Fingerprinting Web Application Platforms by Variations in PNG Implementations

Explore fingerprinting techniques for web application platforms through PNG implementation variations in this 18-minute Black Hat conference talk. Delve into the limitations of traditional fingerprinting methods and discover how analyzing PNG decoders/encoders can provide more reliable platform identification. Learn about a set of tests that differentiate between PNG libraries, enabling platform detection even when anti-fingerprinting measures are in place. Examine case studies involving various web applications, including Java-based systems, Amazon, Photobucket, and Python implementations. Gain insights into the potential of image-based fingerprinting for enhancing web application security audits and forensic investigations.

Introduction
About me
Agenda
schizophrenic files
example
why
pink
Linked Files
Libraries
Images
File Manager
Java
Web Application
Amazon
Photobucket
Python
Conclusion
Results