I have created a new Nmap script that attempts to determine valid Oracle instance names by guessing names from a dictionary against the TNS-listener. It’s available, together with my other scripts, from the nmap scripts page.
I have just posted a new tool to the website called krbpwguess. It does exactly what the name suggests, guesses passwords against the Kerberos service. Visit the krbpwguess web page for more information.
I’ve just released a new security testing tool for Kerberos that allows you to guess valid user accounts against the KDC. More information is available under the KrbGuess page which can be found here.