AutopilotProfileFunctions
AutopilotProfileFunctions is a PowerShell toolkit for Microsoft Intune that automates the creation and management of Windows Autopilot deployment profiles via the Graph API. It enables bulk profile generation (including language, deployment mode, join type, and device type), assigns profiles to regional dynamic groups, and supports CSV-based mass provisioning with customizable device naming templates. The result is scalable, repeatable Autopilot setup across global populations with minimal manual effort.
Security Analysis
2 files scanned on Jan 18, 2026
The Autopilot deployment script appears to be legitimate admin automation for Intune/Autopilot using Microsoft Graph. No obfuscated or malicious patterns are detected. Key security considerations include: (1) potential supply-chain risk from module installation without version control or signature verification; (2) input handling risks in Graph filters used to resolve groups; (3) the need for improved error handling and robust logging; (4) ensuring the trustworthiness of the sourced AutopilotProfileFunctions.ps1; and (5) safeguarding any sensitive data within Profiles.csv. Recommended mitigations: pin module versions and verify signatures, escape inputs in filters, implement try/catch and structured logging, sign/source trusted scripts, and enforce strict access controls on profile data.
You might also like
IntuneAppAssigner
IntuneAppAssigner is a PowerShell tool that enables bulk assignment of mobile apps in Microsoft Intune. It provides an interactive interface to select apps, choose assignment mode (replace, add, or review), set installation intent (Required, Available, Uninstall), and pick target groups (All users, All devices, or Entra ID groups). It also supports assignment filters and, for Android/iOS, App Config profiles (COPE/BYOD). Public Preview status is noted.
Nick BentonEasyDefenderMacOS
EasyDefenderMacOS is a collection of importable Intune policies that streamline onboarding and offboarding macOS devices to Defender for Business/Endpoint. It supports personal work-profile and corporate-owned devices, integrates Defender with Intune, and uses an onboarding package with an optional offboarding package to automate policy deployment and Defender app configuration. The solution covers setup steps from Defender portal to Intune admin center and test enrollment on macOS.
Vlad JohansenToast Notification Script
Toast Notification Script is a Windows 10/11 tool designed for Intune Remediations to deliver native toast notifications to the logged-on user. It supports weekly reminders, reboot prompts, and general announcements with configurable scheduling, branding, languages, and snooze/dismiss actions. Includes a detection script, configuration validation, and robust logging to support reliable remote remediation.
Martin BengtssonAutopilot Assistant
Autopilot Assistant is a modern WPF-based PowerShell tool that streamlines Windows Autopilot onboarding and device provisioning via a secure Microsoft Graph workflow. It collects hardware hash, prevents duplicates, and supports uploading to Intune Autopilot with optional group tagging and assigned user/computer name. The app offers a structured results view, a real-time log center, and local data storage for offline preparation and auditing.
Mohammed Omar