The GDPR regulates the transfer of personal data to third countries. In order to be authorised, the transfer must be based on either an adequacy decision, an adequate level of data protection, or one of the exceptions provided for… Continuer la lecture
All companies, societies (or associations), wherever they are located in the world, whatever their size, whatever their sector of activity, whether they are public or private, must, as long as they deal with personal information of individuals located in… Continuer la lecture
I collected personal data a few years ago, in this case email addresses for a specific purpose. Is it possible to reuse personal data that I collected before the GDPR for another purpose? So first of all, what is personal data in the sense of the GDPR? Because many people don’t really know what personal data is and think that it is limited to names, surnames and addresses. But don’t worry, Article 4 gives the official definition of personal data. (1) ‘personal… Continuer la lecture
The GDPR provides several legal bases for the lawful processing of personal data in accordance with its articles 5(1a) and 6 The CNIL, the French supervisory authority, defines the legal basis as follows: The legal basis of a… Continuer la lecture
In this article, I will explain the different things you need to know about accountability, which roughly means that you as a data controller are obliged under the GDPR to document your compliance, in order to clearly demonstrate your… Continuer la lecture
According to the European Data Supervisor, « “privacy by design” is used to designate the broad concept of technological measures for ensuring privacy as it has developed in the international debate over the last few decades. » This concept is not… Continuer la lecture
The GDPR or General Data Protection Regulation, is the European regulation n°2016/679 that enshrines the protection of personal data as a fundamental right in its own right in the Charter of Fundamental Rights of the European Union in its… Continuer la lecture
Google is often used by hackers to search for various sensitive informations. This same technique is used along with other tools by IT security professionals to gather preliminary data or information about a target (a customer), in order to… Continuer la lecture
OWASP (Open Web Application Security) is a charity and non-profit organization. It is a global community dedicated to promoting knowledge to improve web application security. Its mission is to share information and free ways to train and make the right… Continuer la lecture
The terms penetration testing and vulnerability assessment are often confused and used interchangeably, when in fact the two terms have distinct meanings. Penetration testing, also known as penetration testing or simply pentesting, is a continuous cycle of searching for… Continuer la lecture
Metasploitable is a Linux-based virtual machine. It is intentionally vulnerable and can be used to be exploited legally. Metasploitable Project is created and maintained by Rapid7 Community (Metasploit-FrameWork Community). In simple terms, Metasploitable is a Linux-based operating system, specifically designed… Continuer la lecture
I will begin by summarizing the five phases of a penetration test. The five phases refer to each primary step in the process of a penetration test. Here is a brief overview of the five phases of a penetration test… Continuer la lecture
Kali Linux est une distribution basée sur Debian. Elle est le successeur de Backtrack. C’est un projet maintenu par Offensive Security qui est orienté test d’intrusion, analyse forensique, ingénierie inversée, audit de sécurité etc… Cette distribution est la distribution… Continuer la lecture