Brett Jenson
Brett is the Offensive Security Lead for Wellstar Health System in Marietta, GA, with more than a decade of experience in the security space. His areas of interest include security research, offensive security, programming, and, more recently, working in the LLM/AI Red Teaming space. He especially enjoys teaching and mentoring up-and-coming security students and professionals, having personally helped to expand internship opportunities at Wellstar for the Information Security program.
Session
The barrier to entry for creating sophisticated, custom phishing infrastructure has officially collapsed. Gone are the days of clunky templates and easily detectable campaigns. In this talk, we'll demonstrate how attackers can now leverage Large Language Models (LLMs) to rapidly clone and deploy pixel-perfect, convincing replicas of any target website and login page in minutes, not hours.
We will bypass the false sense of security offered by traditional MFA portals, showing exactly how modern adversary-in-the-middle (AitM) techniques render them ineffective. We'll provide a minimalist's guide to the backend, covering the bare-minimum PHP requirements for implementing convincing routing and live credential capture. This session moves beyond theory, culminating in a live Business Email Compromise (BEC) demo built from scratch specifically for the BSides Atlanta audience. We'll explore why this hyper-accessible threat is more dangerous than ever and what it means for the future of our defensive strategies. Attendees will leave with a sobering understanding of how quickly bespoke offensive tooling can be created and deployed in the real world.