compumike writes "Every week we read about companiesbeinghackedthroughinsecurewebsites. Big companies have in-house security teams, but a new browser-based website penetration testing tool can scan, attack, and detect the biggest threats, such as SQL injection, XSS, and other vulnerabilities, finding holes in more than 90% of websites scanned — even in frameworks like Django and Rails. Can expensive security consultants be replaced by an army of machines providing website security for the masses?" top
Automatic Detection of OWASP Top 10 Vulnerabilities
compumike writes "Tinfoil Security today released a browser-based website penetration testing tool as a service. "We've caught SQL injection, XSS, insecure cookies, and other vulnerabilities in 93% of websites scanned, even in frameworks like Django and Rails," said Ainsley Braun, the CEO. Earlier this year, they found a vulnerability in United Airlines that leaked flight passenger manifests. Expensive security consultants and in-house security teams can be replaced with an army of machines providing constant scanning for all websites." top
compumike writes "CircuitLab today released a browser-based schematic editor and circuit simulator for the online electronics community. SPICE-like device models and mixed-mode simulation support allows engineers and hobbyists to tackle a wide range of board-level design problems. While most EDA software is Windows-only, CircuitLab is 100% web-based, Windows/Mac/Linux cross-platform, and requires no installation or plug-ins. Instead of today's typical forum posts with static screenshots from different desktop tools, the online electronics community can now use CircuitLab to share useful URLs (as well as PNGs and PDFs) which link directly to interactive, editable, runnable schematics. In just a few clicks, another designer can open that circuit, make a change, simulate it, and post the new version back to the community." Link to Original Source top
Talking Digital Calipers for Engineering Accessibi
compumike writes "Whether it's software engineers and their compilers or electrical engineers and their oscilloscopes, engineers and makers of all kinds rely on tools to build great things every day. We depend on tools so much that we often take our ability to use them for granted. The NerdKits team was contacted by a blind mechanical engineering student, and combined technologies from two earlier projects to produce a set of talking digital calipers that turn a distance measurement into an audible readout. The video includes a clip where Terry explains his passion for engineering and shows how he uses the talking calipers in his job and classes, so be sure to take a look." Link to Original Source top
compumike writes "Just in time to add a bit of geeky holiday cheer to your office, this video demonstrates how to build a robotic xylophone featuring handmade solenoids and aluminum bars, and shows it playing several classic holiday tunes. New songs can be programmed in with C macros, and this project could even be extended to perhaps play a melody when a new e-mail arrived or a software build has finished compiling!" top
PayPal E-Commerce Hack: More Friends = Lower Price
compumike writes "PayPal's ongoing X Developer Challenge and their new Adaptive Payments APIs have allowed coders to dream up new ways of thinking about online payments. One of these entries is called Buckits, which lets consumers pool together to get discounts on a microcontroller kit. Check it out, and vote for your favorite entry in the PayPal Developer Challenge — voting ends Friday 11:59PM PST. Whether or not you're interested in microcontrollers, this demonstrates how PayPal is partnering with developers to create the future of e-commerce." top
compumike writes "A "Buckit" takes the simple idea of a group discount and augments it for the modern Web. Anyone can create a Buckit, or join one that already exists. The more people who sign up for a Buckit, the less everyone pays for his or her own item. The final price each Buckit member pays for their itemis based on the number of people in the Buckit, and the amount keeps going down as more people join. This model lets people take advantage of their social networks (online and offline) to spread the word about a cool product and save money at the same time.
compumike writes "For this special Halloween project, NerdKits has put together a "haunted" Jack-O-Lantern (video and construction details inside) that glows when you reach your hand in. The technology used for the sensor is the same as is used in laptop trackpads and smartphone touch screens, just implemented with a somewhat more MacGyverish twist: two pieces of aluminum foil, some paperclips, and a microcontroller running C code at 14MHz. The sensor trips when a hand is near, and LEDs light up to surprise and scare the unsuspecting trick-or-treater!" top
compumike writes "With July 4th cook-outs right around the corner, this new digital meat thermometer hack demonstrates an interesting application of digital signal processing techniques to something everyone does every day: food preparation. In order to speed up the meat temperature measurement, this video tutorial shows how to use a few lines of C code to invert the slow rise of the sensor and get a much faster overall device. Can code overcome the constraints of the physical world? Is the world ready for high tech in the kitchen?" top
compumike writes "After being demoed at MIT's Battle of the Bands last month, the NerdKits team is back with a Piezoelectric Sound Level Meter, borrowing its display from the DIY LED Marquee that was the subject of a previous Slashdot story. This video tutorial describes in detail both the analog electronics plus the C code that runs the system. If this is your first experience at the intersection of digital and analog systems, don't be scared!" top
compumike writes "If you have a significant other to impress this Valentine's Day, consider putting your programming skills to use. This video tutorial shows how to build an LED Heart Valentine's card, powered by a microcontroller running C code, with a neat randomized "twinkling" effect in an interrupt handler. Think about it: how many ladies can say that their Valentine's card runs at 14 MHz?"