Default favicon.ico files can be flagged during penetration test because they identify the software in use. To avoid this situation follow the notes below.
Identify a suitable replacement favicon.ico. Either use one of the many online favicon.ico designer tools or find a nondescript one from another server.
To replace the Cocoon favicon.ico:
Copy an icon with any name to:
/opt/tomcat/current/webapps/cocoon/resources/icons
Change the reference to cocoon.ico in sitemap.xmap to the name of your new icon.
vi /opt/tomcat/current/webapps/cocoon/sitemap.xmap