Social Media
Services
Contact
E-mail: [email protected]
Phone: +30.210.6855061
Address: 466 Irakliou Ave. & Kiprou, 141 22 Iraklio Attikis, Athens, Greece
© Copyright - HackCraft // Powered by Neurosoft
Token Auto-Refresher: Solving Auth Failures in Burp Suite
Intro
Modern web application security testing increasingly…
11/02/2026/by Nikos KarvounisModern web application security testing increasingly…
Offensive Cybersecurity Insights: A New Year Compilation
Hello world!
This is Hackcraft’s Team Newsletter, aka our…
04/02/2026/by Nikos KarvounisThis is Hackcraft’s Team Newsletter, aka our…
Red Teaming and Industry Pitfalls
Cybersecurity isn’t one-size-fits-all, and neither is security…
22/01/2026/by Nikos KarvounisMicrosoft SQL Server Hacking — TDS Downgrade Attack
Hey there, fellow hackers! As we kick off this new year,…
14/01/2026/by Nikos KarvounisXWizard: From XML to ShellExec Using Wizardry
Intro
Red Teaming in the day and age of EDRs often involves finding…
17/10/2025/by Nick AliferopoulosRed Teaming in the day and age of EDRs often involves finding…
Red Teaming: Beyond Compliance to Real Cyber Resilience
In today's ever-evolving cybersecurity landscape, organizations…
24/09/2025/by Villy VarsouOffensive X: Why Offense Is the New Defense?
The pulse of Offensive Cybersecurity was alive and thriving…
25/06/2025/by Nikos KarvounisSafeguarding Business Growth: A Successful Red Teaming Story
An exciting conversation about Red Teaming with Aggelos Karonis,…
29/04/2025/by Villy VarsouFrom One-Time to Recurring: Why Businesses Must Rethink Penetration Testing
In today's fast-paced digital landscape, cyber threats are…
25/02/2025/by Villy VarsouEnhancing AtlasReaper
For red teamers, adaptability is everything. The ability to pivot…
15/01/2025/by Aldo MihasiEnhancing ScheduleRunner
In the arsenal of a red team operator, adaptability and stealth…
18/12/2024/by Aldo MihasiA Native Application Subsystem Backdoor
What is a Native Application?
Most Windows applications come…
03/12/2024/by Nick AliferopoulosMost Windows applications come…
Token Auto-Refresher: Solving Auth Failures in Burp Suite
/in Newsletter, Uncategorized/by Nikos KarvounisIntro Modern web application security testing increasingly relies on automated scanning tools to identify vulnerabilities efficiently. However, as a team, we consistently faced a persistent challenge with bearer token expiration during automated scans. When tokens expired mid-scan, our automated tools encountered authentication failures, resulting in incomplete coverage and requiring manual intervention to update tokens and […]
Offensive Cybersecurity Insights: A New Year Compilation
/in Newsletter/by Nikos KarvounisHello world! This is Hackcraft’s Team Newsletter, aka our official excuse to share what we’ve been researching, noticing, debating and bookmarking obsessively over the past two months. Are you looking for community or cybersecurity business insights? You‘re at the right place. Blogs Let’s start with Hackcraft’s two blogs, which we’d like you to take […]
Red Teaming and Industry Pitfalls
/in Newsletter/by Nikos KarvounisCybersecurity isn’t one-size-fits-all, and neither is security testing. Organizations face different threat landscapes, risk appetites, regulatory pressures and levels of security maturity, yet exercises like red teaming, penetration testing, assume breach, social engineering and tabletop exercises are often grouped together or misunderstood as equivalent. In reality, each of these approaches is designed to validate different […]