BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.pass-the-salt.org//pts2025//talk//9ZCTRE
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-pts2025-9ZCTRE@cfp.pass-the-salt.org
DTSTART;TZID=CET:20250703T104500
DTEND;TZID=CET:20250703T110500
DESCRIPTION:Keycloak is a popular open source Identity and Access Managemen
 t solution that provides single sign-on\, user federation\, and fine-grain
 ed role-based access control. However\, in complex setups with multiple re
 alms\, roles\, and groups\, misconfigurations may go unnoticed. In this sh
 ort talk\, I will demonstrate a straightforward way to export Keycloak dat
 a (realms\, roles\, users\, groups\, etc.) into a Neo4j graph database\, t
 hen run Cypher queries to pinpoint potential security issues such as privi
 lege escalation. By visualizing Keycloak objects as a graph\, we gain a cl
 earer view of relationships and can spot unusual privileges more easily. A
 n open-source tool facilitating this process will be released once the fin
 al configuration details are settled\, enabling others to replicate and ad
 apt the method.
DTSTAMP:20260512T152611Z
LOCATION:Amphitheater 122
SUMMARY:Auditing Keycloak Configurations with Neo4j - Kévin Schouteeten (p
 entester @Synacktiv)
URL:https://cfp.pass-the-salt.org/pts2025/talk/9ZCTRE/
END:VEVENT
END:VCALENDAR