You're on place re: info leakage and this should be an essential thing to consider for anybody rolling their own authentication/authorization plan. +one for mentioning OWASP. Probably the most frequent moral hacking services is penetration tests (or “pen tests”), wherein hackers start out mock cyberattacks versus Website applications, networks or http://pigpgs.com
