Very interesting , also as it’s public and both, the Data Protection Impact Assessment and the Privacy Notice complement each other.
https://tfl.gov.uk/corporate/privacy-and-cookies/wi-fi-data-collection
Vault for managing shared secrets (e.g. in projects)
Web Privacy Measurement in Real-Time Bidding Systems. A Graph-Based Approach to RTB System Classification
Canarytokens (free)
https://canarytokens.org/generate
and an explanation on what they do
http://blog.thinkst.com/p/canarytokensorg-quick-free-detection.html
Privacy Online Test And Resource Compendium
Lookyloo
Lookyloo is a web interface allowing to scrape a website and then displays a tree of domains calling each other.
Article: “Find out who is leaking your secrets with help from invisible zero-width characters”
Interesting article on how zero-width-characters can be used to invisible tag (even short) texts.
https://www.tripwire.com/state-of-security/featured/secrets-invisible-zero-width-characters/
Exodus – mobile app privacy scanner
εxodus is a privacy auditing platform for Android applications. It detects behaviors which can be dangerous for user privacy like ads, tracking, analytics, …
https://reports.exodus-privacy.eu.org/analysis/submit/
It can be run locally via https://github.com/exodus-privacy/exodus
iOS Web Proxy App (CharlesProxy)
Charles proxy is a web debugging proxy application for iOS.
https://www.charlesproxy.com/documentation/ios/
I hope this is simpler than running things in an emulator, or installing a TLS-breaking man-in-the-middle proxy on the wifi access point.
Better Crypto
The Better Crypto project aims to provide copy&paste crypto best practices for sysadmins for common setups, e.g. apache, iis, dovecot, etc..
https://bettercrypto.org/
There’s a PDF with easy copy&paste configurations at
https://bettercrypto.org/static/applied-crypto-hardening.pdf