Back to all tools
PS ScriptTroubleshooting

Get-AutopilotDiagnosticsCommunity

A PowerShell diagnostic script for analyzing Windows Autopilot deployments. Provides comprehensive details about Autopilot profile settings, policies, apps, and certificate profiles tracked via Enrollment Status Page, with support for local PC analysis and captured log files.

Works with
WindowsAutopilot
Created by

Security Analysis

4of 6
2 Issues Found

50 files scanned on Jun 11, 2026

Issues Detected
No Remote Execution
No download-and-execute patterns
IEX with WebClient download in Powershell Scripts/AVD/avd-box-config-generic.ps1 ([lines: 224](https://github.com/andrew-s-taylor/public/blob/main/Powershell Scripts/AVD/avd-box-config-generic.ps1#L224))
No Malicious Patterns
No known malware techniques
VBScript wrapper executes backup.bat with a hidden window (0). Hidden execution is a common tactic for stealth data collection or exfiltration; requires justification, auditing, and strict execution controls.
Passed Checks
No Obfuscated Code
No Credential Theft
No Data Exfiltration
No Hardcoded Secrets
AI Analysis

The codebase includes two hidden, stealthy execution wrappers for backup/restore workflows, which is a red flag for potential misuse or covert data collection. Additionally, the backup script transfers a wide range of user data to cloud storage, which, while common for enterprise backups, requires rigorous data governance and auditing to mitigate privacy and data exposure risks.

You might also like

PS Script

Get-IntuneManagementExtensionDiagnostics

A PowerShell script for analyzing Intune Management Extension logs and creating timeline reports. Tracks Win32App deployments, WinGetApp packages, PowerShell scripts, Proactive Remediations, Custom Compliance, and Autopilot ESP phases with HTML reports and integrated LogViewerUI.

Petri PaavolaPetri Paavola
PS Script

Intune Device Details GUI

A PowerShell-based GUI tool for visualizing comprehensive Intune device information. Shows Azure AD group memberships, Intune filter assignments, application and configuration targeting, BitLocker recovery keys, LAPS passwords, Autopilot profiles, and remediation script status with color-coded assignment states.

Petri PaavolaPetri Paavola
PS Script

Endpoint Analytics Remediation Scripts

A community-driven repository of 86+ PowerShell detection and remediation scripts for Microsoft Intune Endpoint Analytics. Includes scripts for system health, security hardening, device management, application management, optimization, and diagnostics.

Jannik ReinhardJannik Reinhard
PS Script

Intune Log Collector

Intune Log Collector is an Azure-based solution that collects logs from Intune-managed devices, including files, directories, and event logs. It deploys a Function App, Storage Account, and Key Vault, with the Remediation script driving log collection per LogsGatherRules.json and uploading a compressed archive to the logs container. Deployments support Azure Template Spec (Bicep/ARM) or direct ARM templates, with optional UI and post-deployment steps.

Nickolaj AndersenNickolaj Andersen