EXPERIENCE
James started his career as a software developer and worked across a range of different industry sectors before moving into an information security role. He has spent the last 8 years in offensive security, with the latter half of that time spent delivering Red Team engagements.
EDUCATION & CERTIFICATIONS
- Masters of Science: Computer Systems (Bangor University)
- Offensive Security Certified Professional (OSCP)
- Certified Red Team Operator (CRTO)
INDUSTRY CONTRIBUTIONS
James has presented at conferences in the United Kingdom (BSides Manchester and Steelcon) and often publishes research on employer blogs and personal blogs.
PASSION FOR SECURITY
James has been fascinated by computers since he first broke the family PC and had to learn how to fix it in a hurry. Now, he enjoys finding new and unusual ways to make computers do things that they weren’t meant to do.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Hunting Deserialization Vulnerabilities With Claude
In this post, we are going to look at how we can find zero-days in .NET assemblies using Model Context Protocol (MCP).SetupBefore we can start vibe hacking, we…
Teaching a New Dog Old Tricks - Phishing With MCP
As AI evolves with MCP, can a new “dog” learn old tricks? In this blog, we test Claude AI’s ability to craft phishing pretexts—and just how much effort it…
Spec-tac-ula Deserialization: Deploying Specula with .NET
This post explains how.NET deserialization can be used to backdoor a workstation with Specula, making it a valuable resource for Red Team operations.
Discovering a Deserialization Vulnerability in LINQPad
Discovering a Deserialization Vulnerability in LINQPad, written by James Williams, reveals a novel deserialization vulnerability in a.NET application with over…
ISC2 Cleveland Chapter Member Meeting - February 2026
ISC2 Cleveland Chapter February MeetupCome join us for our meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
Discord Livestream - Tales from the Trenches: Securing Active Directory
Join us for this live Discord session with Identity Security Architect Sean Metcalf as he covers the most common Active Directory security issues and how to…
Perspectives on AI in the Cybersecurity Industry in 2026
Join us for this exclusive webinar where our experts will decode the complex relationship between artificial intelligence and cybersecurity in 2026. What will…
Wild West Hackin' Fest @ Mile High 2026
We are excited to be a sponsor at WWHF @ Mile High this year!
Securing Entra ID Administration: Tier 0
Entra ID (formerly Azure AD) is the core service upon which Microsoft 365 applications rely for directory and authentication services. This makes Entra ID…
Fox 26 Houston - Love or Lure? Spotting Romance Scams
Carlos Perez, Director of Security Intelligence, discusses the Israeli government's use of modified exploding devices in Lebanon.
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
