Tool to do correlation of personal data – e.g. from public sources.
https://www.paterva.com/web7/buy/maltego-clients/maltego-ce.php
MobFS – Mobile Security Framework
Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS/Windows) automated pen-testing framework capable of performing static, dynamic analysis and web API testing. https://opensecurity.in
https://github.com/MobSF/Mobile-Security-Framework-MobSF
also
[EFF] Panopticlick (Browser fingerprinting)
Try Panopticlick, EFF’s tool for analyzing how uniquely identifiable and trackable you are as you browse the Web. https://panopticlick.eff.org/
[ProPublica] – Authenticating Email Using DKIM and ARC, or How We Analyzed the Kasowitz Emails
Microsoft online advertising opt-out links
Privacy as a Service in Digital Health
.. paper by Xiang Su, Jarkko Hyysalo, Mika Rautiainen, Jukka Riekki, Jaakko Sauvola, Altti Ilari Maarala, and Harri Honko
at https://arxiv.org/ftp/arxiv/papers/1605/1605.00833.pdf
I still need to let it truely sink in before I’m ready to comment on it – but I am glad that this kind of privacy design thinking is now happening. GDPR offers some challenges and many opportunities. Having a technical layer to complement the privacy processes, we’ll all have to put in place can be very helpful. Let’s hope for some reasonable open data scheme to make the legal aspects more digestable to tools and algorithms.
Let’s just hope, it won’t go the way of the P3P protocol.
[Germany] BvD: Muster-AV-Vertrag für das Gesundheitswesen (DS-GVO) und Umgang mit Altverträgen
BvD: Muster-AV-Vertrag für das Gesundheitswesen (DS-GVO) und Umgang mit Altverträgen
https://www.bvdnet.de/bvd-arbeitskreise/arbeitskreis-medizin/
List of web security and privacy scanner web sites
Privacy specific scanner:
Other scanners:
- https://requestmap.herokuapp.com/
- https://requestmap.webperf.tools/
- https://webpagetest.org/
- https://lookyloo.circl.lu/
- https://themarkup.org/blacklight
- http://sitecheck.sucuri.net/ (emphasis on vulnerabilities)
- https://csi.forcepoint.com/ (emphasis on vulnerabilities, single page)
- http://observatory.mozilla.org/ (emphasis on headers)
- http://securityheaders.io/ (emphasis on headers)
- http://urlscan.io/ (emphasis on interactions while loading URL)
- http://www.htbridge.com/ssl/ (emphasis on SSL)
- https://www.htbridge.com/websec/ (emphasis on headers)
- http://ssllabs.com/ssltest/
- http://www.magereport.com/ (for magento sites only)
- http://www.ssltrust.info/ (checks for entry on malware, spam lists)
- http://hardenize.com/
- http://webcheck.me/
- http://www.unmaskparasites.com/
- http://cryptoreport.websecurity.symantec.com/checker/
- http://www.scanmyserver.com/
- http://safeweb.norton.com/
Online web spiders
[htbridge] Mobile app scanner (free)
Open WPM (web privacy measurement scanner)
From the website below:
“Web Privacy Measurement is the observation of websites and serves to detect, characterize and quantify privacy-impacting behaviors. Applications of Web Privacy Measurement include the detection of price discrimination, targeted news articles and new forms of browser fingerprinting. Although originally focused solely on privacy violations, WPM now encompasses measuring security violations on the web as well.”