Security company Qualys has released a new open source tool, 'BlindElephant', which can accurately fingerprint web applications down to version level in order to better manage the security issues which now plague such software. According to the company, the need for such a tool is pressing. Web applications, including open source apps, are a huge area of potential vulnerability for most organisations and the reason is that it is difficult to assess what is running on a website and to what version number.