https://www.stigviewer.com/stig/general_purpose_operating_system_srg/2014-12-17/finding/V-56745
The STIG finding describes a finding where the operating system failed to obscure feedback of authentication information. The STIG lists a rather obvious check and a fix.
DISA – Security Technical Information Guide (STIG): Oracle database Finding and Fix
3.5 3.5.11 Identification and Authentication
https://www.stigviewer.com/stig/oracle_database_12c/2018-01-03/finding/V-61843
The STIG finding describes a finding where the Oracle Database system failed to obscure feedback of authentication information. The STIG lists a check and a fix.
https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/04-Authentication_Testing/02-Testing_for_Default_Credentials
This link discusses the process of testing web applications for default credentials.
https://it.tamu.edu/policy/it-policy/controls-catalog/controls/IA/IA-6
This example policy describes how information resources shall obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.
https://vaulted.io/library/disa-stigs-srgs/network_device_management_security_requirements_guide/V-55149?version=V2R14&compareto=V2R10
This link provides an example of a network device that must obscure feedback of authentication information. It provides a description of how to check practice and provides a fix.