Social Media
Services
Contact
E-mail: [email protected]
Phone: +30.210.6855061
Address: 466 Irakliou Ave. & Kiprou, 141 22 Iraklio Attikis, Athens, Greece
© Copyright - HackCraft // Powered by Neurosoft
Red Teaming and Industry Pitfalls
Cybersecurity isn’t one-size-fits-all, and neither is security…
22/01/2026/by Nikos KarvounisMicrosoft SQL Server Hacking — TDS Downgrade Attack
Hey there, fellow hackers! As we kick off this new year,…
14/01/2026/by Nikos KarvounisXWizard: From XML to ShellExec Using Wizardry
Intro
Red Teaming in the day and age of EDRs often involves finding…
17/10/2025/by Nick AliferopoulosRed Teaming in the day and age of EDRs often involves finding…
Red Teaming: Beyond Compliance to Real Cyber Resilience
In today's ever-evolving cybersecurity landscape, organizations…
24/09/2025/by Villy VarsouOffensive X: Why Offense Is the New Defense?
The pulse of Offensive Cybersecurity was alive and thriving…
25/06/2025/by Nikos KarvounisSafeguarding Business Growth: A Successful Red Teaming Story
An exciting conversation about Red Teaming with Aggelos Karonis,…
29/04/2025/by Villy VarsouFrom One-Time to Recurring: Why Businesses Must Rethink Penetration Testing
In today's fast-paced digital landscape, cyber threats are…
25/02/2025/by Villy VarsouEnhancing AtlasReaper
For red teamers, adaptability is everything. The ability to pivot…
15/01/2025/by Aldo MihasiEnhancing ScheduleRunner
In the arsenal of a red team operator, adaptability and stealth…
18/12/2024/by Aldo MihasiA Native Application Subsystem Backdoor
What is a Native Application?
Most Windows applications come…
03/12/2024/by Nick AliferopoulosMost Windows applications come…
From Compliance to Resilience: The Synergy between DORA, TIBER EU and Red Teaming for Enhanced Security in the Financial Sector
The number of cyber-attacks has nearly doubled since the start…
30/07/2024/by Villy VarsouBeyond Checkboxes: Red Teaming vs Traditional Security Assessments
In today's ever-evolving cyber threat landscape, organizations require a robust security posture to safeguard their critical assets.
14/05/2024/by Villy Varsou
Red Teaming and Industry Pitfalls
/in Newsletter/by Nikos KarvounisCybersecurity isn’t one-size-fits-all, and neither is security testing. Organizations face different threat landscapes, risk appetites, regulatory pressures and levels of security maturity, yet exercises like red teaming, penetration testing, assume breach, social engineering and tabletop exercises are often grouped together or misunderstood as equivalent. In reality, each of these approaches is designed to validate different […]
Microsoft SQL Server Hacking — TDS Downgrade Attack
/in Newsletter/by Nikos KarvounisHey there, fellow hackers! As we kick off this new year, it's the perfect time to dive into some research. That’s why we wanted to share an intriguing observation from a deep dive into Microsoft SQL Server hacking via its TDS protocol, conducted by our team member NeCro aka Giannis Christodoulakos. While exploring how SQL […]
XWizard: From XML to ShellExec Using Wizardry
/in Newsletter/by Nick AliferopoulosIntro Red Teaming in the day and age of EDRs often involves finding niche and obscure ways, to perform actions usually under specific constraints, or as we call them internally, bypass primitives. While hunting for such primitives, an interesting small ecosystem became the center of attention for further research, that of XWizard. It should be […]