Prevent exposing Laravel usage
It's probably the laravel cookie. It has a distinguishing feature in it's name 'laravel_session'. It would certainly explain where it gets the usage stats from. You can change the name of the cookie in app/config/session.php
.
Edit
So Wappalyzer uses json to specify what it should be looking for. This is how it identifies Laravel:
"Laravel": {
"website": "laravel.com",
"cats": [ 18 ],
"headers": { "Set-Cookie": "laravel_session" },
"implies": "PHP"
}
It uses the headers property to identify what's going on. This would imply it does use the cookie name only...
For the complete list of app tracking rules, they're on the GitHub repo.
When requesting the laravel website for the first time with the laravel_session prefix while the detection plugin is running, Laravel website techs are detected and stored, so in the next time even if you've changed the prefix the laravel detected icon will still showup.
Best thing is to not ever activate the plugin while developing on the production server, and make sure to uncheck in plugin options the "send data to the server".
In the new laravel 5.2, you can change the cookie session name
By going to the config folder in the root of your laravel project and then session.php, scroll down till line 112 and
change this from 'cookie' => 'laravel_session',
to w.e you want.