Tenable’s Research group recently introduced a highly accurate form of operating system identification. This new method combines input from various other plugins that perform separate techniques to guess or identify a remote operating system.

In this post I will present some of the most popular RBL / DNSBL services (free and commercial) as well as things to consider when using a RBL service .

PhishTank and Anti-Phishing Working Group started a research alliance for better understanding and fighting phishing incidents.

N-Stalker is a great tool for every day’s security tests. It’s packed with lots of features which will make your job easier. For instance it can go beyond the login screen of an application thanks to its smart authentication procedure which supports pre-recorded username/password pairs as well as digital certificates.

A Security Fuzzer is a tool designed to provide random data (fuzzing testing) to an application’s parameters. In the context of web application testing, fuzzing means testing especially for buffer overflow, parameter format check, various encoding and error handling.

The Sharebot application crawls the Share network, acting as a node. This allows Sharebot to collect IP addresses and file information in order to identify who is sharing data. You can download Retina Sharebot Personal Edition free for personal use only.

EndPointScan is a free online scan for portable storage devices such as iPods, USB sticks, CompactFlash, Smartphone.

Wfuzz is a tool designed for bruteforcing Web Applications, it can be used for finding resources not linked (directories, servlets, scripts, etc), bruteforce GET and POST parameters for checking different kind of injections (SQL, XSS, LDAP,etc), bruteforce Forms parameters (User/Password), Fuzzing,etc.

A very interesting PHP tool which can be deployed directly into your PHP code and acts as an input filtering module protecting the application form user supplied malicious input. In fact it can be considered an inline PHP IDS /IPS.

GFI LANguard is definitely more than a security scanner. The product is able to remotely deploy and track Microsoft software patches and also it can remotely install custom applications.