Pentest Tools

Published on April 28th, 2014 📆 | 8345 Views ⚑


BlindElephant – Web Application Fingerprinter

The BlindElephant Web Application Fingerprinter attempts to discover the version of a (known) web application by comparing static files at known locations against precomputed hashes for versions of those files in all all available releases. The technique is fast, low-bandwidth, non-invasive, generic, and highly automatable.

BlindElephant can be used directly as a tool on the command line, or as a library to provide fingerprinting functionality to another program.


  • Fast, low-resource approach (generally <6 seconds and < 400kb)
  • Support for 15 commonly deployed web apps (and hundreds of versions), and very easy to add support for more
  • Support for web app plugins (Drupal and WordPress currently, more with community input)

You can grab BlindElephant from the SVN repo here:

Or read more here.


[adsense size='1']

Tagged with:

0 Responses to BlindElephant – Web Application Fingerprinter