RuleForge
A PowerShell utility for capturing, comparing, and exporting Windows Defender firewall rules for Microsoft Intune deployment. Captures baseline rules, compares post-install changes, and exports to JSON for Intune or CSV formats with interactive menu and CLI modes.
Security Analysis
25 files scanned on Jan 8, 2026
The codebase contains multiple remote download-and-execute patterns (GSA client installer, Chocolatey install, and GSA prerequisites) that lack integrity verification, increasing risk of supply-chain compromise. A BitLocker decryption script represents a critical security risk by decrypting all drives. A minor logic bug in a detection script could reduce effectiveness of remediation. No explicit credential harvesting or data exfiltration observed, but the remote install patterns should be hardened with signature checks, TLS verification, and least privilege.
Swipe to see more
You might also like
Autopilot Branding
A PowerShell-based customization tool packaged as an Intune Win32 app for configuring Windows 10/11 devices during Autopilot deployment. Customizes start menu layout, background/theme, time zone, removes built-in apps, installs OneDrive, configures language packs, and manages Windows features.
Michael NiehausFeature Update Controller
Feature Update Controller is a remediation package for Microsoft Intune that centralizes Windows feature upgrades with configurable setup, scripts, and custom actions. It generates and manages SetupConfig.ini, prestages Script Modules, and configures Custom Actions to tailor upgrade behavior, including post-install and rollback steps. The solution downloads and applies a manifest.json, stages scripts and actions, and supports updating or removing configurations on devices for a consistent upgrade experience.
Nickolaj AndersenIntuneFirewallMigration
IntuneFirewallMigration is a public-preview tool that migrates Group Policy and local firewall rules into Intune as Settings Catalog policies. It supports selecting specific firewall profiles (Domain, Private, Public) and importing only inbound or outbound rules, using Microsoft.Graph.Authentication with Invoke-MgGraphRequest. The script disables telemetry, requires Graph permissions (DeviceManagementConfiguration.ReadWrite.All), and works with PowerShell 5 or 7 to modernize firewall management in Intune.
Nick BentonPowerShell ADMX wizard
PowerShell ADMX Wizard creates custom ADMX/ADML templates from a CSV of registry keys, enabling Windows policies via Intune. It generates GUID-based templates, adds registry entries (STRING, DWORD, BINARY), and logs progress. After creation, upload the ADM/ADML to Intune as Imported ADMX to apply through a configuration profile.
Niklas Rast