Enable detection and removal of Google Extensions
Allow for detection and removal of Google Extensions. Syspanda ("Finding & Removing Malicious Google Chrome Extensions Via KACE K1000") describes a method for creating a Custom Software Detection, however it only seems to be applicable for a single user. This is not useful in a multi-user environment, such as classrooms or labs. Support suggested I post this suggestion, in addition to continuing to test/develop the script myself to compensate for multiple users, or to contact Professional Services.
We use a powershell script that goes through every user on the PC that has logged in within last 60 days & still exists in AD or is currently logged in..
The script then pulls browser ext info for Edge, Chrome & Firefox and writes the data to a .csv file with user ID etc..
The script then take that info and gets the risk rating through https://api.crxcavator.io and then writes that info back to the csv.
I then have a custom software that pulls the info in the csv into the device
Then a report that runs every month that groups all the devices together with all the info into 1 .txt file... that I can then rename to csv and use it in excel to sort etc and see what extensions are rated high risk etc..
Example of how report looks attached