Author: paris
Cloudflare workers to Enable A+ for Security Headers on https://securityheaders.com/
Package Intune app with Powershell as .intunewin file
Install-Module -Name IntuneWin32App $SourceFolder = “C:\Users\pwell\Downloads\DetectAndRemm\Powershell”$SetupFile = “InstallTeamviewer.ps1”$OutputFolder = “C:\Users\pwell\Downloads\DetectAndRemm”New-IntuneWin32AppPackage -SourceFolder $SourceFolder -SetupFile $SetupFile -OutputFolder $OutputFolder -Verbose
Mac Essential 8 Intune Policies
Application Control Configuration settings Edit Gatekeeper Allow apps downloaded from these locations Mac App Store Do not allow user to override Gatekeeper Yes User Application Hardening Chrome […]
Disable MDM from mac
Go to https://skipmdm.com Run the below in recovery mode You can verify the contents with curl https://raw.githubusercontent.com/skipmdm-phoenixbot/skipmdm.com/main/Autobypass-mdm.sh | cat For my Ventura Mac , I have to use Disk […]
Third Party Applications Updates
Great Review -> https://andrewstaylor.com/2023/11/06/comparing-package-managers/
Proactive Remediation to Disable all Local Admins on a PC that’s not the LAPS user for Azure AD devices
See Detection here https://pariswells.com/blog/research/powershell-script-to-get-all-active-local-administrators-on-the-pc/
Intune AutoPilot
Find out where your device is registered Powershell Script for AutoPilot Setup AutopilotBranding/AutopilotBranding/AutopilotBranding.ps1 at main · mtniehaus/AutopilotBranding · GitHub Create AutoPilot Group (device.devicePhysicalIDs -any (_ -contains “[ZTDID]”)) […]
User Account Control: Behavior of the elevation prompt for standard users – Automatically deny elevation requests
If this is enabled the only way you can run stuff as Administrator is by logging in to the Machine As An Administrator ( Local Admin I […]
Screen Connect Control \ Labtech “Waiting for your Guest” on Logout
We had a customer that when a user logged out or restarted we would loose access to the machine until they logged back in Issue was the […]