Back to all tools
Web AppAutomation

Windows LAPS Self‑Service Portal

Windows LAPS Self-Service Portal lets users securely retrieve the LAPS password for their own device without helpdesk tickets. Built on Azure Static Web Apps + Azure Functions and Entra ID, it enforces an only-my-device rule, requires a justification, and auto-hides the password after 60 seconds. Every access is auditable in Azure Table Storage, with a zero-stored-secrets design and Graph access via a Managed Identity.

Created by
D
Daniel Fraubaum
GitHubVisit Website

Security Analysis

5of 6
1 Issue FoundOverride

11 files scanned on Mar 12, 2026

Issues Detected
No Hardcoded Secrets
No API keys or credentials in code
Hardcoded credential in infra/deploy.sh ([lines: 297, 320](https://github.com/daniel-fraubaum/laps-self-service-portal/blob/main/infra/deploy.sh#L297-L320))
Passed Checks
No Obfuscated Code
No Remote Execution
No Credential Theft
No Data Exfiltration
No Malicious Patterns
AI Analysis

The codebase adheres to secure authentication flows (Easy Auth or JWKS) and Graph API usage for Intune/Graph integration. No evidence of remote code execution, obfuscated payloads, credential harvesting, data exfiltration via external endpoints, or hardcoded production secrets in code paths. Primary concerns are inadvertent exposure of PII through telemetry/audit logs and the presence of secret placeholders in a config template that must be replaced before deployment.

Screenshots1 / 5

Swipe to see more

You might also like

Web App

Intune Drive Mapping Generator

A web-based tool that generates PowerShell scripts for network drive mapping on Intune-managed Windows 10 devices. Converts existing Group Policy drive exports to Intune-compatible scripts, supports security group filtering with nested groups, and enables recurring execution.

Nicola SuterNicola Suter
Web App

IntuneAdminTemplateMigrator

Converts Administrative Template policies to Settings Catalog — reads your existing policies and creates the equivalent Settings Catalog profiles with the same settings and values.

J
Joery Van den Bosch
Web App

NukeTool

Reset your tenant.

jorgeasaurusjorgeasaurus
Web App

OIB Deployer

OIB Deployer automates the deployment of OpenIntuneBaseline configurations within Microsoft Intune, enabling rapid, repeatable rollouts of baseline security policies and device configurations. It supports policy templating, script deployment, and integration with community-provided baseline content, with built-in logging and error reporting for auditability. Ideal for IT admins seeking consistent, scalable endpoint security across devices.

James RobinsonJames Robinson