SlideShare a Scribd company logo

Hardware hacking for software people

Dobrica Pavlinušić
Dobrica Pavlinušić

This presentation describes my experience with nRF24L01, Arduino, Bus Pirate and various other hardware toys when somebody who does software gets into contact with "real stuff".

Technology
1 of 31
Download to read offline
hardware hacking for software people Dobrica Pavlinušić http://blog.rot13.org/ FSEC 2013, Varaždin http://bit.ly/fsec2013-hh
Open Hardware is game changer! Open Hardware - documentation, schematic, gerbers, source available If it’s not open hardware, open it and start hacking on it!
Overview ● ● ● ● ● wireless 2.4GHz keyboards with nRF24L01 RTL-SDR as universal RF receiver IMS RF band: 315,433,868,915 MHz IR receiving, analysis and sending some microcontroller choices ○ Arduino - AVR, 5V, ARM 3.3V ○ Bus Pirate - PIC, 1.8-5V ○ r0ket, Maple Leaf - ARM Cortex M3, 3.3V ○ Raspberry Pi, ARM, 3.3V ○ CubieBoard, ARM A10/A20, 3.3V, more pins ● other useful supporting hardware ○ USB microscope, solder station...
Wireless keyboards http://blog.rot13.org/2012/12/is-wireless-keyboard-safe-for-your-passwords.html Three basic types of RF connectivity 1. KeyKeriki v1.0 - 27 MHz http://www.remote-exploit.org/articles/keykeriki_v1_0_-_27mhz/index.html 2. KeyKeriki v2.0 – 2.4GHz - nRF24L01 - 1 or 2 Mbit/s http://www.remote-exploit.org/articles/keykeriki_v2_0__8211_2_4ghz/index.html 3. Ubertooth One - 2.4 GHz - Bluetooth http://greatscottgadgets.com/ubertoothone/ All somewhat complicated (KeyKeriki uses multiple radios), requires soldering or expensive kits But seed of doubt is planted: are they secure?! Most newer 2.4GHz (not bluetooth!) keyboards (with dongle) use nRF24L01
nRF24L01 - cheap module http://arduino-info.wikispaces.com/nRF24L01-Mirf-Examples http://www.ebay.com/itm/251044600998 - buy in pair!
Can we sniff with nRF24L01? http://travisgoodspeed.blogspot.com/2011/02/promiscuity-is-nrf24l01s-duty.html
Arduino ping-pong https://plus.google.com/u/0/115404771036822212816/posts/efMJQPTi2su
Open Logic Sniffer in the middle http://github.com/jawi/ols.git ols-0.9.7-RC1 self-compiled on Debian sid amd64 (Java librxtx is pain otherwise!) http://saturn.ffzg.hr/rot13/index.cgi?open_logic_sniffer
nrf24L01_plus Dobrica Pavlinušić Shared publicly Jul 20, 2013 I'm looking for #nRF24L01 #Arduino library for which I can specify number of bytes in address (so, no #define please!) Should I write another one?! Damjan Georgievski Jul 20, 2013 If I'm not mistaken I saw R0ket in Kika, so you might try http://sarwiki.informatik.hu-berlin. de/R0ket_Keyboard_sniffer and let me know if it works because I'm basing my port on that code as opposed to combination of C and python which Travis did. Dobrica Pavlinušić Jul 22, 2013 Doesn't look as a big patch to make the address length an extra argument https://github. com/kehribar/nrf24L01_plus/blob/master/nrf24. c#L69 Dobrica Pavlinušić Jul 21, 2013 True, but I also need much more low-level access because I'm porting http: //travisgoodspeed.blogspot. com/2011/02/promiscuity-is-nrf24l01s-duty.html (and have no use for most of this library). +Damjan Georgievski I read through source code of ntf24L01_plus and it really is nicest library I've seen so far. It's not Arduino API based, so I'm somewhat reluctant to base my solution on it (since part of the goal is to show how Arduino based code can be run on different platforms since I think that Arduino API is new standard for embedded development -- blog post about it is pending :-)
First try: port r0ket sniffer to Arduino ● ● ● ● ● http://www.pollin.de/shop/dt/ODE4OTgxOTk/Bausaetze_Module/Module/Microcontroller_Experimentierplatine_r0ket.html http://sarwiki.informatik.hu-berlin.de/R0ket_Keyboard_sniffer First encounter with porting Arduino SPI API Utter failure. I can’t sniff a thing! Code does work (somewhat) - there is hope in porting code from one architecture (ARM Cortex M3) to another (AVR)!
Travis Goodspeed - GoodFET http://goodfet.sourceforge.net/ http://goodfet.sourceforge.net/clients/goodfetnrf/ ● ● ● ● ● ● ● ● MSP430 based, have to solder it! How about port to Arduino Uno? It does support few AVR boards... Arduino Internals by Dale Wheat ...read, read,hack, google, hack… port to different AVR! (CPU freq) luckily nRF24L01 is 5V tolerant! http://git.rot13.org/?p=goodfet;a=shortlog; h=refs/heads/Arduino_Uno
Chicony KG-0609 http://saturn.ffzg.hr/rot13/index.cgi?chicony_kg_0609 http://git.rot13.org/?p=goodfet;a=shortlog;h=refs/heads/Arduino_Uno dpavlin@blue:/blue-zfs/MSP430/goodfet/client$ ./goodfet.nrf sniffmacs | tee /dev/shm/keyboard Holding autotune on 2402 MHz sync,mac,r5,r6 'aa,bffffdea01,02,0f' looks valid 1 0.00094 'aa,bffffdea01,02,0f' looks valid 2 0.00187 'aa,bffffdea01,02,0f' looks valid 3 0.00143 '55,5ffffef500,02,0f' looks valid 1 0.00047 '55,5ffffef500,02,0f' looks valid 2 0.00084 'aa,bffffdea01,02,0f' looks valid 4 0.00154 'aa,bffffdea01,02,0f' looks valid 5 0.00182 'aa,bffffdea01,02,0f' looks valid 6 0.00202 '55,5ffffef500,02,0f' looks valid 3 0.00094 dpavlin@x200:/rest/cvs/goodfet/client$ ./goodfet.nrf tune aa,bffffdea01,02,0f dpavlin@blue:/blue-zfs/MSP430/goodfet/client$ Listening as bffffdea01 on 2402 MHz cc af f7 bf ff 1f e0 19 54 3b 9f 2d 2d c4 d4 cc ef f7 bc fe 7f e0 19 46 c2 5e b0 c2 5a 54 cc 2f f7 bd 42 5f e0 19 4c bf be dc d5 69 ab cc 6f f7 a2 62 ff e0 19 58 26 9e 32 25 20 82 cc af f7 a2 7f 9f e0 19 5b 61 5d bf 1a 62 50 cc ef f7 bf 1d 9f e0 19 53 1f 14 a5 14 54 c3 ./goodfet.nrf sniff 1d a5 19 0b b6 a2 6a 48 55 56 a9 14 96 cd 8e d5 14 d1 d5 42 95 12 b8 84 16 2c 4f 54 d9 59 93 d8 8f 3a d2 25 2a 99 66 a6 1a 56 95 dd ed bd 52 09 b6 19 ac 5f 11 08 2b 7a a7 7d 0a 77 74 aa d2 75 25 55 d4 a5 b6 ed 4d 4a aa 85 8d fd aa 22 85 4a d1 14 a8 ce 72 84 1b b2 dc ad 91 55 8b 4b 85 56 41 15 2a 48 1a 91
https://twitter.com/dpavlin/status/366151267548020737
Logitech - possible? I guess so! Anybody want to try it out?
buy nRFL01 2pcs NRF24L01+ 2.4GHz Antenna Wireless Transceiver Module For Microcontr http://www.ebay.com/itm/2pcs-NRF24L01-2-4GHzAntenna-Wireless-Transceiver-Module-Microcontr/251044600998? pt=LH_DefaultDomain_0&hash=item3a736c9ca6 You will need two of them! http://dx.com/p/upgraded-2-4ghz-nrf24l01-wirelesstransceiver-module-for-arduino-black-147596 http://dx.com/p/2-4ghz-wireless-nrf24l01-module-150867
Arduino - API first! http://blog.rot13.org/2013/07/is-arduino-api-new-standard-for-embedded-development.html ● Arduino Uno - ATmega328 ● Arduino Nano - ATmega328 - breadboard friendly ● Arduino Leonardo - ATmega32u4 - USB hacks! ● Arduino Mega - ATmega2560 - bigger, more IO ● Arduino Due - Atmel SAM3X8E ARM Cortex-M3 ● Pinguino - PIC18 8-bit or PIC32 32-bit CPUs ● The Maple - STM32F103RB 72MHz ARM Cortex M3 ● Energia - MSP430 16MHz board for under $10 ● pcDuino - A10 1GHz ARM Cortex A8 ● Papilio FPGA - Spartan 3 or 6 FPGA - AVR8 or ZPUino Many more different boards with (some) API compatibility 5V vs 3.3V, some compatible with Arduino shield pinout
buy Arduino parts http://blog.rot13.org/2013/08/monitoring-room-temperatureusing-arduino.html ● Solderless Breadboard with 400 Tie-Point ● Breadboard Jumper Wires ● Breadboard Jumper Wire Set ● DHT11 1-Wire Single Pin Thermometer/Hygrometer Module ● DS18B20 Programmable Resolution 1-Wire Digital Thermometer ● Arduino Compatible 1.6" Nokia 5110 LCD Module with Blue Backlit
nRF24L01 + Bus Pirate http://www.seeedstudio.com/depot/bus-pirate-v36-universal-serial-interface-p-609.html http://sandboxelectronics.com/store/index.php?main_page=product_info&cPath=65&products_id=185 http://www.seeedstudio.com/depot/bus-pirate-cable-p-932.html ● Bus Pirate v3.6 universal serial interface http://dangerousprototypes.com/docs/Bus_Pirate ● different voltages (1.8V-5V from MCU power, sense) and protocols ○ UART, SPI, JTAG, I2C, SUMP logic analyzer (4K samples, <~1Mhz) ● scripting mode to drive nRF24L01 from python script ○ https://github.com/dpavlin/nRF24L01-buspirate ○ my fork, reviewed by someone who knows python, hi Aka :-) ● differnet modes have differnet pinout, take care when connecting! http://dangerousprototypes.com/docs/Common_Bus_Pirate_cable_pinouts
nRF24L01 + Raspberry Pi nRF24L01 RF Transceiver https://github.com/kehribar/nrf24L01_plus http://www.raspberrypi.org/phpBB3/viewtopic.php?f=45&t=17061 http://arduino-for-beginners.blogspot.fr/2013/02/setup-nordic-nrf24l01-rf-modules-to.html setup it as hub for your devices Raspberry Pi is 3.3V device so don’t blindingly connect 5V Arduino sensors to it! Level shifter comes to rescue: http://www.ebay.com/itm/121032259497 there are models with less pins too!
RTL-SDR - NSND Osijek 2013 http://blog.rot13.org/2013/02/nsnd-2013-osijek-rtl-sdr-software-defined-radio.html SDR receiver 8-bit, 2.4 MS/s, 24-1766 MHz http://sdr.osmocom.org/trac/wiki/rtl-sdr ● good for IMS bands (433, 868 Mhz EU) or ADS-B (1090 Mhz) - with home-made antennas! All antennas are not equal! ● weather sensors, blinds, garage doors
What about sending IMS RF? https://code.google.com/p/rfcat/ CC1111 (RF+MCU) vs CC1101 (RF only) 443 or 868 or 915 MHz - select one Notice pin spacing! (2mm vs 2.54 mm) Chronos AP dongle now in with MSP430F5509 and CC1101 so rfcat don’t work anymore! http://saturn.ffzg. hr/arh/index.cgi? msp430_chronos
Cheaper alternative for Arduino ● ● ● ● 315 or 434 MHz only, AM modulation buy pair - easier to debug and play with! http://www.ebay.com/itm/251044600998 Separate sender and receiver module
USB IR Toy - easy IR hacking http://blog.rot13.org/2013/04/usb-ir-toy---pic-18f2550-fw-update-under-linux.html http://dangerousprototypes.com/docs/USB_Infrared_Toy You will need to upgrade PIC firmware first! Can be used as SUMP IR analyzer Record and playback IR codes with ease!
IR Arduino alternative Requires more software tweaking than IR Toy http://www.righto.com/2009/08/multi-protocol-infrared-remote-library.html ● 5 pairs Infrared Diode LED IR Emission & Receiver http://www.ebay. com/itm/281010446403 ● you will need additional resistor for IR led!
Arduino Nano + 125KHz RFID http://www.seeedstudio.com/wiki/index.php?title=Electronic_brick_-_125Khz_RFID_Card_Reader https://plus.google.com/115404771036822212816/posts/VPnpbJqn2xo It was cheap sell-out component (5V serial)
USB Microscope http://dx.com/p/s04-25-600x-usb-digital-photography-microscope-magnifier-w-8-led-white-light-grey-black-189450 Good for inspection 640*480 - don’t believe megapixels, has noticeable lag, zoom too high, this is only usable distance!
ERSA analogue soldering station, 80W 570 Kn, Nuškalo, temperature regulation fail > 500°C, burned tip!
Bitcoins in Mojo FPGA Mining #bitcoins at rate of 35.79 MH/s using +Embedded Micro mojo #fpga board. It's slower than GPU, but fun to watch. https://plus.google.com/115404771036822212816/posts/4sTk4DEHncH http://saturn.ffzg.hr/rot13/index.cgi?mojo
CubieBoard https://plus.google.com/115404771036822212816/posts/VPnpbJqn2xo 2mm pins!
Seeking! Questions? ● Advice on board design (KiCAD? Fritzing?) ● Infrared microwave to convert into reflow owen http://youtu.be/NCGzKDTFBSQ (and somebody who wants to have it at home :-) ● everything else I don’t have and don’t know that I need, please donate! I’m starting to learn soldering :-) ● buy me something from my whishlist at ebay ● always buy more than one component (and pass rest of them to friends)
hardware hacking for software people Dobrica Pavlinušić http://blog.rot13.org/ FSEC 2013, Varaždin http://bit.ly/fsec2013-hh

Recommended

Cheap, good, hackable tools from China: AVR component tester
Cheap, good, hackable tools from China: AVR component testerCheap, good, hackable tools from China: AVR component tester
Cheap, good, hackable tools from China: AVR component testerDobrica Pavlinušić
 
Raspberry Pi - best friend for all your GPIO needs
Raspberry Pi - best friend for all your GPIO needsRaspberry Pi - best friend for all your GPIO needs
Raspberry Pi - best friend for all your GPIO needsDobrica Pavlinušić
 
Let's hack cheap hardware 2016 edition
Let's hack cheap hardware 2016 editionLet's hack cheap hardware 2016 edition
Let's hack cheap hardware 2016 editionDobrica Pavlinušić
 
Gnu linux on arm for $50 - $100
Gnu linux on arm for $50 - $100Gnu linux on arm for $50 - $100
Gnu linux on arm for $50 - $100Dobrica Pavlinušić
 
FSEC 2014 - I can haz your board with JTAG
FSEC 2014 - I can haz your board with JTAGFSEC 2014 - I can haz your board with JTAG
FSEC 2014 - I can haz your board with JTAGDobrica Pavlinušić
 
Jtag
JtagJtag
JtagTELE-audiovision eng
 
pcDuino Presentation at SparkFun
pcDuino Presentation at SparkFunpcDuino Presentation at SparkFun
pcDuino Presentation at SparkFunJingfeng Liu
 
How to build Open Hardware self-navigating car robot
How to build Open Hardware self-navigating car robotHow to build Open Hardware self-navigating car robot
How to build Open Hardware self-navigating car robotTomáš Jukin
 

Recommended

Cheap, good, hackable tools from China: AVR component tester
Cheap, good, hackable tools from China: AVR component testerCheap, good, hackable tools from China: AVR component tester
Cheap, good, hackable tools from China: AVR component testerDobrica Pavlinušić
 
Raspberry Pi - best friend for all your GPIO needs
Raspberry Pi - best friend for all your GPIO needsRaspberry Pi - best friend for all your GPIO needs
Raspberry Pi - best friend for all your GPIO needsDobrica Pavlinušić
 
Let's hack cheap hardware 2016 edition
Let's hack cheap hardware 2016 editionLet's hack cheap hardware 2016 edition
Let's hack cheap hardware 2016 editionDobrica Pavlinušić
 
Gnu linux on arm for $50 - $100
Gnu linux on arm for $50 - $100Gnu linux on arm for $50 - $100
Gnu linux on arm for $50 - $100Dobrica Pavlinušić
 
FSEC 2014 - I can haz your board with JTAG
FSEC 2014 - I can haz your board with JTAGFSEC 2014 - I can haz your board with JTAG
FSEC 2014 - I can haz your board with JTAGDobrica Pavlinušić
 
Jtag
JtagJtag
JtagTELE-audiovision eng
 
pcDuino Presentation at SparkFun
pcDuino Presentation at SparkFunpcDuino Presentation at SparkFun
pcDuino Presentation at SparkFunJingfeng Liu
 
How to build Open Hardware self-navigating car robot
How to build Open Hardware self-navigating car robotHow to build Open Hardware self-navigating car robot
How to build Open Hardware self-navigating car robotTomáš Jukin
 
Embedded Recipes 2019 - Introduction to JTAG debugging
Embedded Recipes 2019 - Introduction to JTAG debuggingEmbedded Recipes 2019 - Introduction to JTAG debugging
Embedded Recipes 2019 - Introduction to JTAG debuggingAnne Nicolas
 
Scratch pcduino
Scratch pcduinoScratch pcduino
Scratch pcduinoJingfeng Liu
 
Innovation with pcDuino
Innovation with pcDuinoInnovation with pcDuino
Innovation with pcDuinoJingfeng Liu
 
Esp8266 - Intro for dummies
Esp8266 - Intro for dummiesEsp8266 - Intro for dummies
Esp8266 - Intro for dummiesPavlos Isaris
 
Arduino arduino boardnano
Arduino arduino boardnanoArduino arduino boardnano
Arduino arduino boardnanoclickengenharia
 
Introduction to pcDuino
Introduction to pcDuinoIntroduction to pcDuino
Introduction to pcDuinoJingfeng Liu
 
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKING
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKINGA BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKING
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKINGSilvio Cesare
 
pcDuino tech talk at Carnegie Mellon University 10/14/2014
pcDuino tech talk at Carnegie Mellon University 10/14/2014pcDuino tech talk at Carnegie Mellon University 10/14/2014
pcDuino tech talk at Carnegie Mellon University 10/14/2014Jingfeng Liu
 
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...codebits
 
Controlling the internet of things using wearable tech - Design+Code Day; Ara...
Controlling the internet of things using wearable tech - Design+Code Day; Ara...Controlling the internet of things using wearable tech - Design+Code Day; Ara...
Controlling the internet of things using wearable tech - Design+Code Day; Ara...ArabNet ME
 
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernels
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernelsMainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernels
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernelsDobrica Pavlinušić
 
Stm32 develop tool introduction
Stm32 develop tool introductionStm32 develop tool introduction
Stm32 develop tool introduction冠宇 陳
 
Hardware hacking 101
Hardware hacking 101Hardware hacking 101
Hardware hacking 101Tiago Henriques
 
[5]投影片 futurewad樹莓派研習會 141218
[5]投影片 futurewad樹莓派研習會 141218[5]投影片 futurewad樹莓派研習會 141218
[5]投影片 futurewad樹莓派研習會 141218CAVEDU Education
 
Arduino Forensics
Arduino ForensicsArduino Forensics
Arduino ForensicsSteve Watson
 
Espresso Lite v2 - ESP8266 Overview
Espresso Lite v2 - ESP8266 OverviewEspresso Lite v2 - ESP8266 Overview
Espresso Lite v2 - ESP8266 OverviewThe World Bank
 
[Ruxcon 2011] Post Memory Corruption Memory Analysis
[Ruxcon 2011] Post Memory Corruption Memory Analysis[Ruxcon 2011] Post Memory Corruption Memory Analysis
[Ruxcon 2011] Post Memory Corruption Memory AnalysisMoabi.com
 
Stm32 f4 first touch
Stm32 f4 first touchStm32 f4 first touch
Stm32 f4 first touchBenux Wei
 
Let's begin io t with $10
Let's begin io t with $10Let's begin io t with $10
Let's begin io t with $10Makoto Takahashi
 
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...Victor Asanza
 
Ir수광모듈 datasheet
Ir수광모듈 datasheetIr수광모듈 datasheet
Ir수광모듈 datasheet대현 임
 
Gesture Control Car
Gesture Control CarGesture Control Car
Gesture Control CarPiyumal Samarathunga
 

More Related Content

What's hot

Embedded Recipes 2019 - Introduction to JTAG debugging
Embedded Recipes 2019 - Introduction to JTAG debuggingEmbedded Recipes 2019 - Introduction to JTAG debugging
Embedded Recipes 2019 - Introduction to JTAG debuggingAnne Nicolas
 
Innovation with pcDuino
Innovation with pcDuinoInnovation with pcDuino
Innovation with pcDuinoJingfeng Liu
 
Esp8266 - Intro for dummies
Esp8266 - Intro for dummiesEsp8266 - Intro for dummies
Esp8266 - Intro for dummiesPavlos Isaris
 
Arduino arduino boardnano
Arduino arduino boardnanoArduino arduino boardnano
Arduino arduino boardnanoclickengenharia
 
Introduction to pcDuino
Introduction to pcDuinoIntroduction to pcDuino
Introduction to pcDuinoJingfeng Liu
 
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKING
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKINGA BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKING
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKINGSilvio Cesare
 
pcDuino tech talk at Carnegie Mellon University 10/14/2014
pcDuino tech talk at Carnegie Mellon University 10/14/2014pcDuino tech talk at Carnegie Mellon University 10/14/2014
pcDuino tech talk at Carnegie Mellon University 10/14/2014Jingfeng Liu
 
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...codebits
 
Controlling the internet of things using wearable tech - Design+Code Day; Ara...
Controlling the internet of things using wearable tech - Design+Code Day; Ara...Controlling the internet of things using wearable tech - Design+Code Day; Ara...
Controlling the internet of things using wearable tech - Design+Code Day; Ara...ArabNet ME
 
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernels
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernelsMainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernels
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernelsDobrica Pavlinušić
 
Stm32 develop tool introduction
Stm32 develop tool introductionStm32 develop tool introduction
Stm32 develop tool introduction冠宇 陳
 
[5]投影片 futurewad樹莓派研習會 141218
[5]投影片 futurewad樹莓派研習會 141218[5]投影片 futurewad樹莓派研習會 141218
[5]投影片 futurewad樹莓派研習會 141218CAVEDU Education
 
Espresso Lite v2 - ESP8266 Overview
Espresso Lite v2 - ESP8266 OverviewEspresso Lite v2 - ESP8266 Overview
Espresso Lite v2 - ESP8266 OverviewThe World Bank
 
[Ruxcon 2011] Post Memory Corruption Memory Analysis
[Ruxcon 2011] Post Memory Corruption Memory Analysis[Ruxcon 2011] Post Memory Corruption Memory Analysis
[Ruxcon 2011] Post Memory Corruption Memory AnalysisMoabi.com
 
Stm32 f4 first touch
Stm32 f4 first touchStm32 f4 first touch
Stm32 f4 first touchBenux Wei
 
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...Victor Asanza
 

What's hot (20)

Embedded Recipes 2019 - Introduction to JTAG debugging
Embedded Recipes 2019 - Introduction to JTAG debuggingEmbedded Recipes 2019 - Introduction to JTAG debugging
Embedded Recipes 2019 - Introduction to JTAG debugging
 
Scratch pcduino
Scratch pcduinoScratch pcduino
Scratch pcduino
 
Innovation with pcDuino
Innovation with pcDuinoInnovation with pcDuino
Innovation with pcDuino
 
Esp8266 - Intro for dummies
Esp8266 - Intro for dummiesEsp8266 - Intro for dummies
Esp8266 - Intro for dummies
 
Arduino arduino boardnano
Arduino arduino boardnanoArduino arduino boardnano
Arduino arduino boardnano
 
Introduction to pcDuino
Introduction to pcDuinoIntroduction to pcDuino
Introduction to pcDuino
 
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKING
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKINGA BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKING
A BEGINNER’S JOURNEY INTO THE WORLD OF HARDWARE HACKING
 
pcDuino tech talk at Carnegie Mellon University 10/14/2014
pcDuino tech talk at Carnegie Mellon University 10/14/2014pcDuino tech talk at Carnegie Mellon University 10/14/2014
pcDuino tech talk at Carnegie Mellon University 10/14/2014
 
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...
Hardware Hacking area: Make Cool Things with Microcontrollers (and learn to s...
 
Controlling the internet of things using wearable tech - Design+Code Day; Ara...
Controlling the internet of things using wearable tech - Design+Code Day; Ara...Controlling the internet of things using wearable tech - Design+Code Day; Ara...
Controlling the internet of things using wearable tech - Design+Code Day; Ara...
 
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernels
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernelsMainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernels
Mainline kernel on ARM Tegra20 devices that are left behind on 2.6 kernels
 
Stm32 develop tool introduction
Stm32 develop tool introductionStm32 develop tool introduction
Stm32 develop tool introduction
 
Hardware hacking 101
Hardware hacking 101Hardware hacking 101
Hardware hacking 101
 
[5]投影片 futurewad樹莓派研習會 141218
[5]投影片 futurewad樹莓派研習會 141218[5]投影片 futurewad樹莓派研習會 141218
[5]投影片 futurewad樹莓派研習會 141218
 
Arduino Forensics
Arduino ForensicsArduino Forensics
Arduino Forensics
 
Espresso Lite v2 - ESP8266 Overview
Espresso Lite v2 - ESP8266 OverviewEspresso Lite v2 - ESP8266 Overview
Espresso Lite v2 - ESP8266 Overview
 
[Ruxcon 2011] Post Memory Corruption Memory Analysis
[Ruxcon 2011] Post Memory Corruption Memory Analysis[Ruxcon 2011] Post Memory Corruption Memory Analysis
[Ruxcon 2011] Post Memory Corruption Memory Analysis
 
Stm32 f4 first touch
Stm32 f4 first touchStm32 f4 first touch
Stm32 f4 first touch
 
Let's begin io t with $10
Let's begin io t with $10Let's begin io t with $10
Let's begin io t with $10
 
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...
⭐⭐⭐⭐⭐ CHARLA MACI: Prototipado de Aplicaciones Industriales Basado en Hardwar...
 

Viewers also liked

Ir수광모듈 datasheet
Ir수광모듈 datasheetIr수광모듈 datasheet
Ir수광모듈 datasheet대현 임
 
Hardware Hacking in schools (ACEC2014)
Hardware Hacking in schools (ACEC2014)Hardware Hacking in schools (ACEC2014)
Hardware Hacking in schools (ACEC2014)Dan Bowen
 
amrapali builders @@ hardware hacking and robotics using the raspberry pi.pdf
amrapali builders @@ hardware hacking and robotics using the raspberry pi.pdfamrapali builders @@ hardware hacking and robotics using the raspberry pi.pdf
amrapali builders @@ hardware hacking and robotics using the raspberry pi.pdfamrapalibuildersreviews
 
Intro to Hardware Firmware Hacking
Intro to Hardware Firmware HackingIntro to Hardware Firmware Hacking
Intro to Hardware Firmware HackingAndrew Freeborn
 
Hardware Hacking caso práctico Ingeniería Inversa Smartcards
Hardware Hacking caso práctico Ingeniería Inversa SmartcardsHardware Hacking caso práctico Ingeniería Inversa Smartcards
Hardware Hacking caso práctico Ingeniería Inversa SmartcardsAndres Lozano
 
BSides DFW2016-Hack Mode Enabled
BSides DFW2016-Hack Mode EnabledBSides DFW2016-Hack Mode Enabled
BSides DFW2016-Hack Mode Enabledpricemcdonald
 
Hacker's and painters Hardware Hacking 101 - 10th Oct 2014
Hacker's and painters Hardware Hacking 101 - 10th Oct 2014Hacker's and painters Hardware Hacking 101 - 10th Oct 2014
Hacker's and painters Hardware Hacking 101 - 10th Oct 2014Takeda Pharmaceuticals
 
Coders need to learn hardware hacking NOW
Coders need to learn hardware hacking NOWCoders need to learn hardware hacking NOW
Coders need to learn hardware hacking NOWMatt Biddulph
 
JTAG Interface (Intro)
JTAG Interface (Intro)JTAG Interface (Intro)
JTAG Interface (Intro)Nitesh Bhatia
 
Hardware Reverse Engineering: From Boot to Root
Hardware Reverse Engineering: From Boot to RootHardware Reverse Engineering: From Boot to Root
Hardware Reverse Engineering: From Boot to RootYashin Mehaboobe
 
PyTriage: A malware analysis framework
PyTriage: A malware analysis frameworkPyTriage: A malware analysis framework
PyTriage: A malware analysis frameworkYashin Mehaboobe
 
Hacktivism in Virtual Worlds
Hacktivism in Virtual WorldsHacktivism in Virtual Worlds
Hacktivism in Virtual WorldsPaleFire
 
Post-relational databases: What's wrong with web development?
Post-relational databases: What's wrong with web development?Post-relational databases: What's wrong with web development?
Post-relational databases: What's wrong with web development?Dobrica Pavlinušić
 

Viewers also liked (19)

Ir수광모듈 datasheet
Ir수광모듈 datasheetIr수광모듈 datasheet
Ir수광모듈 datasheet
 
Gesture Control Car
Gesture Control CarGesture Control Car
Gesture Control Car
 
Hardware Hacking in schools (ACEC2014)
Hardware Hacking in schools (ACEC2014)Hardware Hacking in schools (ACEC2014)
Hardware Hacking in schools (ACEC2014)
 
amrapali builders @@ hardware hacking and robotics using the raspberry pi.pdf
amrapali builders @@ hardware hacking and robotics using the raspberry pi.pdfamrapali builders @@ hardware hacking and robotics using the raspberry pi.pdf
amrapali builders @@ hardware hacking and robotics using the raspberry pi.pdf
 
Intro to Hardware Firmware Hacking
Intro to Hardware Firmware HackingIntro to Hardware Firmware Hacking
Intro to Hardware Firmware Hacking
 
Playful
PlayfulPlayful
Playful
 
Hardware Hacking caso práctico Ingeniería Inversa Smartcards
Hardware Hacking caso práctico Ingeniería Inversa SmartcardsHardware Hacking caso práctico Ingeniería Inversa Smartcards
Hardware Hacking caso práctico Ingeniería Inversa Smartcards
 
Hardware Hacking Primer
Hardware Hacking PrimerHardware Hacking Primer
Hardware Hacking Primer
 
BSides DFW2016-Hack Mode Enabled
BSides DFW2016-Hack Mode EnabledBSides DFW2016-Hack Mode Enabled
BSides DFW2016-Hack Mode Enabled
 
Hardware hacking
Hardware hackingHardware hacking
Hardware hacking
 
Hacker's and painters Hardware Hacking 101 - 10th Oct 2014
Hacker's and painters Hardware Hacking 101 - 10th Oct 2014Hacker's and painters Hardware Hacking 101 - 10th Oct 2014
Hacker's and painters Hardware Hacking 101 - 10th Oct 2014
 
Breaking Bad EACS Implementations
Breaking Bad EACS ImplementationsBreaking Bad EACS Implementations
Breaking Bad EACS Implementations
 
Coders need to learn hardware hacking NOW
Coders need to learn hardware hacking NOWCoders need to learn hardware hacking NOW
Coders need to learn hardware hacking NOW
 
Router forensics
Router forensicsRouter forensics
Router forensics
 
JTAG Interface (Intro)
JTAG Interface (Intro)JTAG Interface (Intro)
JTAG Interface (Intro)
 
Hardware Reverse Engineering: From Boot to Root
Hardware Reverse Engineering: From Boot to RootHardware Reverse Engineering: From Boot to Root
Hardware Reverse Engineering: From Boot to Root
 
PyTriage: A malware analysis framework
PyTriage: A malware analysis frameworkPyTriage: A malware analysis framework
PyTriage: A malware analysis framework
 
Hacktivism in Virtual Worlds
Hacktivism in Virtual WorldsHacktivism in Virtual Worlds
Hacktivism in Virtual Worlds
 
Post-relational databases: What's wrong with web development?
Post-relational databases: What's wrong with web development?Post-relational databases: What's wrong with web development?
Post-relational databases: What's wrong with web development?
 

Similar to Hardware hacking for software people

Share the Experience of Using Embedded Development Board
Share the Experience of Using Embedded Development BoardShare the Experience of Using Embedded Development Board
Share the Experience of Using Embedded Development BoardJian-Hong Pan
 
Raspberry Pi and Amateur Radio - 2020 update
Raspberry Pi and Amateur Radio - 2020 updateRaspberry Pi and Amateur Radio - 2020 update
Raspberry Pi and Amateur Radio - 2020 updateKevin Hooke
 
Systems@Scale 2021 BPF Performance Getting Started
Systems@Scale 2021 BPF Performance Getting StartedSystems@Scale 2021 BPF Performance Getting Started
Systems@Scale 2021 BPF Performance Getting StartedBrendan Gregg
 
Using arduino and raspberry pi for internet of things
Using arduino and raspberry pi for internet of thingsUsing arduino and raspberry pi for internet of things
Using arduino and raspberry pi for internet of thingsSudar Muthu
 
Intro to arduino
Intro to arduinoIntro to arduino
Intro to arduinoJosé Faria
 
Let's trace Linux Lernel with KGDB @ COSCUP 2021
Let's trace Linux Lernel with KGDB @ COSCUP 2021Let's trace Linux Lernel with KGDB @ COSCUP 2021
Let's trace Linux Lernel with KGDB @ COSCUP 2021Jian-Hong Pan
 
Attendance system using MYSQL with Raspberry pi and RFID-RC522
Attendance system using MYSQL with Raspberry pi and RFID-RC522Attendance system using MYSQL with Raspberry pi and RFID-RC522
Attendance system using MYSQL with Raspberry pi and RFID-RC522Sanjay Kumar
 
Performance Wins with eBPF: Getting Started (2021)
Performance Wins with eBPF: Getting Started (2021)Performance Wins with eBPF: Getting Started (2021)
Performance Wins with eBPF: Getting Started (2021)Brendan Gregg
 
Tac Presentation October 72014- Raspberry PI
Tac Presentation October 72014- Raspberry PITac Presentation October 72014- Raspberry PI
Tac Presentation October 72014- Raspberry PICliff Samuels Jr.
 
When a robot is smart enough?
When a robot is smart enough?When a robot is smart enough?
When a robot is smart enough?Tomáš Jukin
 
Linux+sensor+device-tree+shell=IoT !
Linux+sensor+device-tree+shell=IoT !Linux+sensor+device-tree+shell=IoT !
Linux+sensor+device-tree+shell=IoT !Dobrica Pavlinušić
 
Raspberry Pi - HW/SW Application Development
Raspberry Pi - HW/SW Application DevelopmentRaspberry Pi - HW/SW Application Development
Raspberry Pi - HW/SW Application DevelopmentCorley S.r.l.
 
Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120
Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120
Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120Linaro
 
Single Board Computers & Raspberry Pi Basics
Single Board Computers & Raspberry Pi BasicsSingle Board Computers & Raspberry Pi Basics
Single Board Computers & Raspberry Pi BasicsEueung Mulyana
 
Dragon board 410c workshop - slideshow
Dragon board 410c workshop - slideshowDragon board 410c workshop - slideshow
Dragon board 410c workshop - slideshow96Boards
 
Adding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux Device
Adding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux DeviceAdding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux Device
Adding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux DeviceSamsung Open Source Group
 
NodeMCU with Blynk and Firebase
NodeMCU with Blynk and FirebaseNodeMCU with Blynk and Firebase
NodeMCU with Blynk and FirebaseEueung Mulyana
 
How to Make an Eight Bit Computer and Save the World!
How to Make an Eight Bit Computer and Save the World!How to Make an Eight Bit Computer and Save the World!
How to Make an Eight Bit Computer and Save the World!elliando dias
 

Similar to Hardware hacking for software people (20)

Share the Experience of Using Embedded Development Board
Share the Experience of Using Embedded Development BoardShare the Experience of Using Embedded Development Board
Share the Experience of Using Embedded Development Board
 
Raspberry Pi and Amateur Radio - 2020 update
Raspberry Pi and Amateur Radio - 2020 updateRaspberry Pi and Amateur Radio - 2020 update
Raspberry Pi and Amateur Radio - 2020 update
 
Systems@Scale 2021 BPF Performance Getting Started
Systems@Scale 2021 BPF Performance Getting StartedSystems@Scale 2021 BPF Performance Getting Started
Systems@Scale 2021 BPF Performance Getting Started
 
Using arduino and raspberry pi for internet of things
Using arduino and raspberry pi for internet of thingsUsing arduino and raspberry pi for internet of things
Using arduino and raspberry pi for internet of things
 
Intro to arduino
Intro to arduinoIntro to arduino
Intro to arduino
 
Let's trace Linux Lernel with KGDB @ COSCUP 2021
Let's trace Linux Lernel with KGDB @ COSCUP 2021Let's trace Linux Lernel with KGDB @ COSCUP 2021
Let's trace Linux Lernel with KGDB @ COSCUP 2021
 
Attendance system using MYSQL with Raspberry pi and RFID-RC522
Attendance system using MYSQL with Raspberry pi and RFID-RC522Attendance system using MYSQL with Raspberry pi and RFID-RC522
Attendance system using MYSQL with Raspberry pi and RFID-RC522
 
Performance Wins with eBPF: Getting Started (2021)
Performance Wins with eBPF: Getting Started (2021)Performance Wins with eBPF: Getting Started (2021)
Performance Wins with eBPF: Getting Started (2021)
 
Tac Presentation October 72014- Raspberry PI
Tac Presentation October 72014- Raspberry PITac Presentation October 72014- Raspberry PI
Tac Presentation October 72014- Raspberry PI
 
OpenWRT and Perl
OpenWRT and PerlOpenWRT and Perl
OpenWRT and Perl
 
When a robot is smart enough?
When a robot is smart enough?When a robot is smart enough?
When a robot is smart enough?
 
Linux+sensor+device-tree+shell=IoT !
Linux+sensor+device-tree+shell=IoT !Linux+sensor+device-tree+shell=IoT !
Linux+sensor+device-tree+shell=IoT !
 
Raspberry Pi - HW/SW Application Development
Raspberry Pi - HW/SW Application DevelopmentRaspberry Pi - HW/SW Application Development
Raspberry Pi - HW/SW Application Development
 
Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120
Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120
Linux-wpan: IEEE 802.15.4 and 6LoWPAN in the Linux Kernel - BUD17-120
 
Single Board Computers & Raspberry Pi Basics
Single Board Computers & Raspberry Pi BasicsSingle Board Computers & Raspberry Pi Basics
Single Board Computers & Raspberry Pi Basics
 
Dragon board 410c workshop - slideshow
Dragon board 410c workshop - slideshowDragon board 410c workshop - slideshow
Dragon board 410c workshop - slideshow
 
Adding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux Device
Adding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux DeviceAdding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux Device
Adding IEEE 802.15.4 and 6LoWPAN to an Embedded Linux Device
 
NodeMCU with Blynk and Firebase
NodeMCU with Blynk and FirebaseNodeMCU with Blynk and Firebase
NodeMCU with Blynk and Firebase
 
Porting Android
Porting AndroidPorting Android
Porting Android
 
How to Make an Eight Bit Computer and Save the World!
How to Make an Eight Bit Computer and Save the World!How to Make an Eight Bit Computer and Save the World!
How to Make an Eight Bit Computer and Save the World!
 

More from Dobrica Pavlinušić

Security of Linux containers in the cloud
Security of Linux containers in the cloudSecurity of Linux containers in the cloud
Security of Linux containers in the cloudDobrica Pavlinušić
 
This is an interesting metadata source. Can I import it into Koha?
This is an interesting metadata source. Can I import it into Koha?This is an interesting metadata source. Can I import it into Koha?
This is an interesting metadata source. Can I import it into Koha?Dobrica Pavlinušić
 
KohaCon11: Integrating Koha with RFID system
KohaCon11: Integrating Koha with RFID systemKohaCon11: Integrating Koha with RFID system
KohaCon11: Integrating Koha with RFID systemDobrica Pavlinušić
 
Free Libre Open Source Software at FFZG library
Free Libre Open Source Software at FFZG libraryFree Libre Open Source Software at FFZG library
Free Libre Open Source Software at FFZG libraryDobrica Pavlinušić
 
Post-relational databases: What's wrong with web development? v3
Post-relational databases: What's wrong with web development? v3Post-relational databases: What's wrong with web development? v3
Post-relational databases: What's wrong with web development? v3Dobrica Pavlinušić
 
Virtualization which isn't: LXC (Linux Containers)
Virtualization which isn't: LXC (Linux Containers)Virtualization which isn't: LXC (Linux Containers)
Virtualization which isn't: LXC (Linux Containers)Dobrica Pavlinušić
 
Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...
Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...
Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...Dobrica Pavlinušić
 
Mojo Facets – so, you have data and browser?
Mojo Facets – so, you have data and browser?Mojo Facets – so, you have data and browser?
Mojo Facets – so, you have data and browser?Dobrica Pavlinušić
 
Kako napraviti Google od zgrade sa računalima?
Kako napraviti Google od zgrade sa računalima?Kako napraviti Google od zgrade sa računalima?
Kako napraviti Google od zgrade sa računalima?Dobrica Pavlinušić
 
Virtual LDAP - kako natjerati strgane aplikacije da koriste LDAP
Virtual LDAP - kako natjerati strgane aplikacije da koriste LDAPVirtual LDAP - kako natjerati strgane aplikacije da koriste LDAP
Virtual LDAP - kako natjerati strgane aplikacije da koriste LDAPDobrica Pavlinušić
 
REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...
REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...
REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...Dobrica Pavlinušić
 

More from Dobrica Pavlinušić (18)

bro - what is in my network?
bro - what is in my network?bro - what is in my network?
bro - what is in my network?
 
Ganeti - build your own cloud
Ganeti - build your own cloudGaneti - build your own cloud
Ganeti - build your own cloud
 
Security of Linux containers in the cloud
Security of Linux containers in the cloudSecurity of Linux containers in the cloud
Security of Linux containers in the cloud
 
This is an interesting metadata source. Can I import it into Koha?
This is an interesting metadata source. Can I import it into Koha?This is an interesting metadata source. Can I import it into Koha?
This is an interesting metadata source. Can I import it into Koha?
 
Web scale monitoring
Web scale monitoringWeb scale monitoring
Web scale monitoring
 
SysAdmin cookbook
SysAdmin cookbookSysAdmin cookbook
SysAdmin cookbook
 
Printing on Linux, simple right?
Printing on Linux, simple right?Printing on Linux, simple right?
Printing on Linux, simple right?
 
KohaCon11: Integrating Koha with RFID system
KohaCon11: Integrating Koha with RFID systemKohaCon11: Integrating Koha with RFID system
KohaCon11: Integrating Koha with RFID system
 
Deploy your own P2P network
Deploy your own P2P networkDeploy your own P2P network
Deploy your own P2P network
 
Free Libre Open Source Software at FFZG library
Free Libre Open Source Software at FFZG libraryFree Libre Open Source Software at FFZG library
Free Libre Open Source Software at FFZG library
 
Post-relational databases: What's wrong with web development? v3
Post-relational databases: What's wrong with web development? v3Post-relational databases: What's wrong with web development? v3
Post-relational databases: What's wrong with web development? v3
 
Virtualization which isn't: LXC (Linux Containers)
Virtualization which isn't: LXC (Linux Containers)Virtualization which isn't: LXC (Linux Containers)
Virtualization which isn't: LXC (Linux Containers)
 
Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...
Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...
Slobodni softver za digitalne arhive: EPrints u Knjižnici Filozofskog fakulte...
 
Mojo Facets – so, you have data and browser?
Mojo Facets – so, you have data and browser?Mojo Facets – so, you have data and browser?
Mojo Facets – so, you have data and browser?
 
Kako napraviti Google od zgrade sa računalima?
Kako napraviti Google od zgrade sa računalima?Kako napraviti Google od zgrade sa računalima?
Kako napraviti Google od zgrade sa računalima?
 
Virtual LDAP - kako natjerati strgane aplikacije da koriste LDAP
Virtual LDAP - kako natjerati strgane aplikacije da koriste LDAPVirtual LDAP - kako natjerati strgane aplikacije da koriste LDAP
Virtual LDAP - kako natjerati strgane aplikacije da koriste LDAP
 
REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...
REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...
REST ili kao sam se prestao brinuti o HTTP-u i zavolio ga (HTTP Server sa RFI...
 
Oslobodimo Hardware
Oslobodimo HardwareOslobodimo Hardware
Oslobodimo Hardware
 

Recently uploaded

Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxnull - The Open Security Community
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2Hyundai Motor Group
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 

Recently uploaded (20)

Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 

Hardware hacking for software people

  • 1. hardware hacking for software people Dobrica Pavlinušić http://blog.rot13.org/ FSEC 2013, Varaždin http://bit.ly/fsec2013-hh
  • 2. Open Hardware is game changer! Open Hardware - documentation, schematic, gerbers, source available If it’s not open hardware, open it and start hacking on it!
  • 3. Overview ● ● ● ● ● wireless 2.4GHz keyboards with nRF24L01 RTL-SDR as universal RF receiver IMS RF band: 315,433,868,915 MHz IR receiving, analysis and sending some microcontroller choices ○ Arduino - AVR, 5V, ARM 3.3V ○ Bus Pirate - PIC, 1.8-5V ○ r0ket, Maple Leaf - ARM Cortex M3, 3.3V ○ Raspberry Pi, ARM, 3.3V ○ CubieBoard, ARM A10/A20, 3.3V, more pins ● other useful supporting hardware ○ USB microscope, solder station...
  • 4. Wireless keyboards http://blog.rot13.org/2012/12/is-wireless-keyboard-safe-for-your-passwords.html Three basic types of RF connectivity 1. KeyKeriki v1.0 - 27 MHz http://www.remote-exploit.org/articles/keykeriki_v1_0_-_27mhz/index.html 2. KeyKeriki v2.0 – 2.4GHz - nRF24L01 - 1 or 2 Mbit/s http://www.remote-exploit.org/articles/keykeriki_v2_0__8211_2_4ghz/index.html 3. Ubertooth One - 2.4 GHz - Bluetooth http://greatscottgadgets.com/ubertoothone/ All somewhat complicated (KeyKeriki uses multiple radios), requires soldering or expensive kits But seed of doubt is planted: are they secure?! Most newer 2.4GHz (not bluetooth!) keyboards (with dongle) use nRF24L01
  • 5. nRF24L01 - cheap module http://arduino-info.wikispaces.com/nRF24L01-Mirf-Examples http://www.ebay.com/itm/251044600998 - buy in pair!
  • 6. Can we sniff with nRF24L01? http://travisgoodspeed.blogspot.com/2011/02/promiscuity-is-nrf24l01s-duty.html
  • 8. Open Logic Sniffer in the middle http://github.com/jawi/ols.git ols-0.9.7-RC1 self-compiled on Debian sid amd64 (Java librxtx is pain otherwise!) http://saturn.ffzg.hr/rot13/index.cgi?open_logic_sniffer
  • 9. nrf24L01_plus Dobrica Pavlinušić Shared publicly Jul 20, 2013 I'm looking for #nRF24L01 #Arduino library for which I can specify number of bytes in address (so, no #define please!) Should I write another one?! Damjan Georgievski Jul 20, 2013 If I'm not mistaken I saw R0ket in Kika, so you might try http://sarwiki.informatik.hu-berlin. de/R0ket_Keyboard_sniffer and let me know if it works because I'm basing my port on that code as opposed to combination of C and python which Travis did. Dobrica Pavlinušić Jul 22, 2013 Doesn't look as a big patch to make the address length an extra argument https://github. com/kehribar/nrf24L01_plus/blob/master/nrf24. c#L69 Dobrica Pavlinušić Jul 21, 2013 True, but I also need much more low-level access because I'm porting http: //travisgoodspeed.blogspot. com/2011/02/promiscuity-is-nrf24l01s-duty.html (and have no use for most of this library). +Damjan Georgievski I read through source code of ntf24L01_plus and it really is nicest library I've seen so far. It's not Arduino API based, so I'm somewhat reluctant to base my solution on it (since part of the goal is to show how Arduino based code can be run on different platforms since I think that Arduino API is new standard for embedded development -- blog post about it is pending :-)
  • 10. First try: port r0ket sniffer to Arduino ● ● ● ● ● http://www.pollin.de/shop/dt/ODE4OTgxOTk/Bausaetze_Module/Module/Microcontroller_Experimentierplatine_r0ket.html http://sarwiki.informatik.hu-berlin.de/R0ket_Keyboard_sniffer First encounter with porting Arduino SPI API Utter failure. I can’t sniff a thing! Code does work (somewhat) - there is hope in porting code from one architecture (ARM Cortex M3) to another (AVR)!
  • 11. Travis Goodspeed - GoodFET http://goodfet.sourceforge.net/ http://goodfet.sourceforge.net/clients/goodfetnrf/ ● ● ● ● ● ● ● ● MSP430 based, have to solder it! How about port to Arduino Uno? It does support few AVR boards... Arduino Internals by Dale Wheat ...read, read,hack, google, hack… port to different AVR! (CPU freq) luckily nRF24L01 is 5V tolerant! http://git.rot13.org/?p=goodfet;a=shortlog; h=refs/heads/Arduino_Uno
  • 12. Chicony KG-0609 http://saturn.ffzg.hr/rot13/index.cgi?chicony_kg_0609 http://git.rot13.org/?p=goodfet;a=shortlog;h=refs/heads/Arduino_Uno dpavlin@blue:/blue-zfs/MSP430/goodfet/client$ ./goodfet.nrf sniffmacs | tee /dev/shm/keyboard Holding autotune on 2402 MHz sync,mac,r5,r6 'aa,bffffdea01,02,0f' looks valid 1 0.00094 'aa,bffffdea01,02,0f' looks valid 2 0.00187 'aa,bffffdea01,02,0f' looks valid 3 0.00143 '55,5ffffef500,02,0f' looks valid 1 0.00047 '55,5ffffef500,02,0f' looks valid 2 0.00084 'aa,bffffdea01,02,0f' looks valid 4 0.00154 'aa,bffffdea01,02,0f' looks valid 5 0.00182 'aa,bffffdea01,02,0f' looks valid 6 0.00202 '55,5ffffef500,02,0f' looks valid 3 0.00094 dpavlin@x200:/rest/cvs/goodfet/client$ ./goodfet.nrf tune aa,bffffdea01,02,0f dpavlin@blue:/blue-zfs/MSP430/goodfet/client$ Listening as bffffdea01 on 2402 MHz cc af f7 bf ff 1f e0 19 54 3b 9f 2d 2d c4 d4 cc ef f7 bc fe 7f e0 19 46 c2 5e b0 c2 5a 54 cc 2f f7 bd 42 5f e0 19 4c bf be dc d5 69 ab cc 6f f7 a2 62 ff e0 19 58 26 9e 32 25 20 82 cc af f7 a2 7f 9f e0 19 5b 61 5d bf 1a 62 50 cc ef f7 bf 1d 9f e0 19 53 1f 14 a5 14 54 c3 ./goodfet.nrf sniff 1d a5 19 0b b6 a2 6a 48 55 56 a9 14 96 cd 8e d5 14 d1 d5 42 95 12 b8 84 16 2c 4f 54 d9 59 93 d8 8f 3a d2 25 2a 99 66 a6 1a 56 95 dd ed bd 52 09 b6 19 ac 5f 11 08 2b 7a a7 7d 0a 77 74 aa d2 75 25 55 d4 a5 b6 ed 4d 4a aa 85 8d fd aa 22 85 4a d1 14 a8 ce 72 84 1b b2 dc ad 91 55 8b 4b 85 56 41 15 2a 48 1a 91
  • 14. Logitech - possible? I guess so! Anybody want to try it out?
  • 15. buy nRFL01 2pcs NRF24L01+ 2.4GHz Antenna Wireless Transceiver Module For Microcontr http://www.ebay.com/itm/2pcs-NRF24L01-2-4GHzAntenna-Wireless-Transceiver-Module-Microcontr/251044600998? pt=LH_DefaultDomain_0&hash=item3a736c9ca6 You will need two of them! http://dx.com/p/upgraded-2-4ghz-nrf24l01-wirelesstransceiver-module-for-arduino-black-147596 http://dx.com/p/2-4ghz-wireless-nrf24l01-module-150867
  • 16. Arduino - API first! http://blog.rot13.org/2013/07/is-arduino-api-new-standard-for-embedded-development.html ● Arduino Uno - ATmega328 ● Arduino Nano - ATmega328 - breadboard friendly ● Arduino Leonardo - ATmega32u4 - USB hacks! ● Arduino Mega - ATmega2560 - bigger, more IO ● Arduino Due - Atmel SAM3X8E ARM Cortex-M3 ● Pinguino - PIC18 8-bit or PIC32 32-bit CPUs ● The Maple - STM32F103RB 72MHz ARM Cortex M3 ● Energia - MSP430 16MHz board for under $10 ● pcDuino - A10 1GHz ARM Cortex A8 ● Papilio FPGA - Spartan 3 or 6 FPGA - AVR8 or ZPUino Many more different boards with (some) API compatibility 5V vs 3.3V, some compatible with Arduino shield pinout
  • 17. buy Arduino parts http://blog.rot13.org/2013/08/monitoring-room-temperatureusing-arduino.html ● Solderless Breadboard with 400 Tie-Point ● Breadboard Jumper Wires ● Breadboard Jumper Wire Set ● DHT11 1-Wire Single Pin Thermometer/Hygrometer Module ● DS18B20 Programmable Resolution 1-Wire Digital Thermometer ● Arduino Compatible 1.6" Nokia 5110 LCD Module with Blue Backlit
  • 18. nRF24L01 + Bus Pirate http://www.seeedstudio.com/depot/bus-pirate-v36-universal-serial-interface-p-609.html http://sandboxelectronics.com/store/index.php?main_page=product_info&cPath=65&products_id=185 http://www.seeedstudio.com/depot/bus-pirate-cable-p-932.html ● Bus Pirate v3.6 universal serial interface http://dangerousprototypes.com/docs/Bus_Pirate ● different voltages (1.8V-5V from MCU power, sense) and protocols ○ UART, SPI, JTAG, I2C, SUMP logic analyzer (4K samples, <~1Mhz) ● scripting mode to drive nRF24L01 from python script ○ https://github.com/dpavlin/nRF24L01-buspirate ○ my fork, reviewed by someone who knows python, hi Aka :-) ● differnet modes have differnet pinout, take care when connecting! http://dangerousprototypes.com/docs/Common_Bus_Pirate_cable_pinouts
  • 19. nRF24L01 + Raspberry Pi nRF24L01 RF Transceiver https://github.com/kehribar/nrf24L01_plus http://www.raspberrypi.org/phpBB3/viewtopic.php?f=45&t=17061 http://arduino-for-beginners.blogspot.fr/2013/02/setup-nordic-nrf24l01-rf-modules-to.html setup it as hub for your devices Raspberry Pi is 3.3V device so don’t blindingly connect 5V Arduino sensors to it! Level shifter comes to rescue: http://www.ebay.com/itm/121032259497 there are models with less pins too!
  • 20. RTL-SDR - NSND Osijek 2013 http://blog.rot13.org/2013/02/nsnd-2013-osijek-rtl-sdr-software-defined-radio.html SDR receiver 8-bit, 2.4 MS/s, 24-1766 MHz http://sdr.osmocom.org/trac/wiki/rtl-sdr ● good for IMS bands (433, 868 Mhz EU) or ADS-B (1090 Mhz) - with home-made antennas! All antennas are not equal! ● weather sensors, blinds, garage doors
  • 21. What about sending IMS RF? https://code.google.com/p/rfcat/ CC1111 (RF+MCU) vs CC1101 (RF only) 443 or 868 or 915 MHz - select one Notice pin spacing! (2mm vs 2.54 mm) Chronos AP dongle now in with MSP430F5509 and CC1101 so rfcat don’t work anymore! http://saturn.ffzg. hr/arh/index.cgi? msp430_chronos
  • 22. Cheaper alternative for Arduino ● ● ● ● 315 or 434 MHz only, AM modulation buy pair - easier to debug and play with! http://www.ebay.com/itm/251044600998 Separate sender and receiver module
  • 23. USB IR Toy - easy IR hacking http://blog.rot13.org/2013/04/usb-ir-toy---pic-18f2550-fw-update-under-linux.html http://dangerousprototypes.com/docs/USB_Infrared_Toy You will need to upgrade PIC firmware first! Can be used as SUMP IR analyzer Record and playback IR codes with ease!
  • 24. IR Arduino alternative Requires more software tweaking than IR Toy http://www.righto.com/2009/08/multi-protocol-infrared-remote-library.html ● 5 pairs Infrared Diode LED IR Emission & Receiver http://www.ebay. com/itm/281010446403 ● you will need additional resistor for IR led!
  • 25. Arduino Nano + 125KHz RFID http://www.seeedstudio.com/wiki/index.php?title=Electronic_brick_-_125Khz_RFID_Card_Reader https://plus.google.com/115404771036822212816/posts/VPnpbJqn2xo It was cheap sell-out component (5V serial)
  • 26. USB Microscope http://dx.com/p/s04-25-600x-usb-digital-photography-microscope-magnifier-w-8-led-white-light-grey-black-189450 Good for inspection 640*480 - don’t believe megapixels, has noticeable lag, zoom too high, this is only usable distance!
  • 27. ERSA analogue soldering station, 80W 570 Kn, Nuškalo, temperature regulation fail > 500°C, burned tip!
  • 28. Bitcoins in Mojo FPGA Mining #bitcoins at rate of 35.79 MH/s using +Embedded Micro mojo #fpga board. It's slower than GPU, but fun to watch. https://plus.google.com/115404771036822212816/posts/4sTk4DEHncH http://saturn.ffzg.hr/rot13/index.cgi?mojo
  • 30. Seeking! Questions? ● Advice on board design (KiCAD? Fritzing?) ● Infrared microwave to convert into reflow owen http://youtu.be/NCGzKDTFBSQ (and somebody who wants to have it at home :-) ● everything else I don’t have and don’t know that I need, please donate! I’m starting to learn soldering :-) ● buy me something from my whishlist at ebay ● always buy more than one component (and pass rest of them to friends)
  • 31. hardware hacking for software people Dobrica Pavlinušić http://blog.rot13.org/ FSEC 2013, Varaždin http://bit.ly/fsec2013-hh