Intune Support Suite - Analysing tool
Posted by Individual_Lock7531@reddit | sysadmin | View on Reddit | 2 comments
Over the past few weeks, I've been working with Intune as part of an internal proof of concept. Since analyzing data on a single device can be quite tedious (gathering log files on the remote device, analyzing keys remotely via the registry, etc.), I wrote small resetters and log collection tools for my own devices. However, since I now need to perform certain analyses on other devices as well, I created a tool to simplify the work involved with Intune, specifically the analysis. I thought it might be interesting for other administrators too, so I created a Git repository.
As a disclaimer: I'm not a programmer, so I programmed the tool using Vibe coding.
Due to certain security measures, it is necessary to sign the content. This is particularly true for the "TrustedConfigs," where the allowedSource and allowedDestination addresses can also be stored. Trust is validated by comparing the executable's certificate with the catalog's certificate (which includes the path to the trustedconfig.json file). Additionally, the fingerprint of the TrustedConfig.json file is compared with the catalog's certificate. Therefore, after modifying the TrustedConfig.json file, the catalog must be recreated and re-signed. If the trust is not established, the tool can only be used in simulation mode.
i would be interested in feedback or anything else for this one, so feel free to commit
Installation/Build can be performed as follows:
1) Repository klonen
2) .\Scripts\custompacker_git.ps1 (edit paths if needed!)
3) make sure you have a valid code signing certificate imported
4) run custompacker_git.ps1
a) it will sign all ps1 and exe
b) it will build the project
c) it will sign the new exe
d) it will add a catalog for the trustedconfig.json to be valid
e) if .\Assets\file.ico is available, it will be set as program icon
5) if you have to change trustedconfig.json after you built the project, use retrustconfig.ps1 or just build it newly. otherwise the trust cant be verificated and the program will only run in simulation mode
NSASchweiz/IntuneSupportSuite: IntuneSupportSuite
i hope this post wont be seen as advertising. Just wanted to share my work, because i thought it could be useful for others.
itishowitisanditbad@reddit
Which is why there is a cattle vs pets methodology to things.
Which is where it should have ended really.
Individual_Lock7531@reddit (OP)
true that. But i was tyred of getting everything together every time and wanted to fasten things up. Also in case of an install problem as a first view on the reason could be helpful for like 1st lvl support. its not meant for analyzing a bigger problem over all. More like a first insight to start