"In this video recorded at Black Hat USA 2010, Patrick
Thomas, a vulnerability researcher at Qualys, discusses the open
source web application fingerprinting engine BlindElephant.
"BlindElephant is a tool that helps security professionals and
systems administrators identify everything running on their
servers, including any web applications users may have downloaded.
It doesn't check for vulnerabilities or vulnerability to a
particular exploit, but rather what version of applications are
running on their site."