James 'albinowax' Kettle


I'm the Director of Research at PortSwigger, where I research and publish novel web attack techniques. I also design and refine vulnerability detection techniques for Burp Suite's scanner, and share knowledge via the Web Security Academy. (full bio)

Social: Twitter, Mastodon, LinkedIn, PortSwigger
Contact: or

Presentations

Latest talk: Browser-Powered Desync Attacks: A New Frontier in Request Smuggling (recording)

Next planned talk: hopefully BHUSA & DEF CON, August 2023


Show/Hide past presentations Show/Hide past presentations

Past presentations


Research Portfolio

HTTP Request Smuggling

Web Cache Poisoning


Tools & automation

Other highlights

Thoughts on research

Inspiration: gareth, magic mac, lcamtuf, filedescriptor, agarri, fin1te, ezequiel pereira, homakov, irsdl, .mario, insertScript, sirdarckcat, kkotowicz, ush.it, webstersprodigy, kuza55, neal poole and many others.

Misc