Introducing Secure Helper - The User Controlled AI Assistant

  • Thread starter Thread starter danb
  • Start date Start date
  • Featured
I've downloaded the new version, it no longer errors which is good but I am now getting no data for the sections - same for basic and advanced snapshot.

2. Windows Security / Defender
Microsoft Defender basic status:
No data returned.

Microsoft Defender recent threat/history summary:
No data returned.

3. Firewall
No data returned.

4. Secure Boot / BitLocker
Secure Boot:
No data returned.

BitLocker:
No data returned.
Hmmm, that is very odd, thank you for letting me know!

Can you please try this version and let me know how it does? This version was not really designed to fix that particular issue, but there is a decent chance it might work well because I optimized the code quite a bit. I also added a few new features / sections to the Security Snapshot.

SecureHelper 1.00 Demo
SHA-256: b8a3e1a58b953d81fd7c0f0b8091e94899559b217485b150e4a156f4e741109a
 
Hmmm, that is very odd, thank you for letting me know!

Can you please try this version and let me know how it does? This version was not really designed to fix that particular issue, but there is a decent chance it might work well because I optimized the code quite a bit. I also added a few new features / sections to the Security Snapshot.

SecureHelper 1.00 Demo
SHA-256: b8a3e1a58b953d81fd7c0f0b8091e94899559b217485b150e4a156f4e741109a

When I first ran the basic and advanced report, the firewall now reports correctly :) but there was still errors with Windows Defender and Secure Boot and Bitlocker.


First report:
3. Firewall
Name Enabled DefaultInboundAction DefaultOutboundAction
---- ------- -------------------- ---------------------
Domain True Block Allow
Private True Block Allow
Public True Block Allow

2. Windows Security / Defender
Microsoft Defender basic status:
AMServiceEnabled : False
AntispywareEnabled : False
AntivirusEnabled : False
BehaviorMonitorEnabled : False
IoavProtectionEnabled : False
NISEnabled : False
RealTimeProtectionEnabled : False
AntivirusSignatureVersion :
AntivirusSignatureLastUpdated :
QuickScanAge : 4294967295
FullScanAge : 4294967295
AMRunningMode : Not running
IsTamperProtected : False

Microsoft Defender exclusions (may require administrator rights to view):
Unavailable: #< CLIXML
<Objs Version="1.1.0.1" xmlns="http://schemas.microsoft.com/powershell/2004/04"><Obj S="progress" RefId="0"><TN RefId="0"><T>System.Management.Automation.PSCustomObject</T><T>System.Object</T></TN><MS><I64 N="SourceId">1</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><S S="Error">Get-MpPreference : Operation failed with the following error: 0x800106ba_x000D__x000A_</S><S S="Error">At line:2 char:10_x000D__x000A_</S><S S="Error">+ $prefs = Get-MpPreference_x000D__x000A_</S><S S="Error">+ ~~~~~~~~~~~~~~~~_x000D__x000A_</S><S S="Error"> + CategoryInfo : NotSpecified: (MSFT_MpPreference:root\Microsoft\...FT_MpPreference) [Get-MpPreference], _x000D__x000A_</S><S S="Error"> CimException_x000D__x000A_</S><S S="Error"> + FullyQualifiedErrorId : HRESULT 0x800106ba,Get-MpPreference_x000D__x000A_</S><S S="Error"> _x000D__x000A_</S></Objs>

Microsoft Defender recent threat/history summary:
No recent Microsoft Defender threat detections were returned.

4. Secure Boot / BitLocker
Secure Boot:
Unavailable: #< CLIXML
<Objs Version="1.1.0.1" xmlns="http://schemas.microsoft.com/powershell/2004/04"><Obj S="progress" RefId="0"><TN RefId="0"><T>System.Management.Automation.PSCustomObject</T><T>System.Object</T></TN><MS><I64 N="SourceId">1</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><S S="Error">Confirm-SecureBootUEFI : Unable to set proper privileges. Access was denied._x000D__x000A_</S><S S="Error">At line:2 char:10_x000D__x000A_</S><S S="Error">+ $value = Confirm-SecureBootUEFI_x000D__x000A_</S><S S="Error">+ ~~~~~~~~~~~~~~~~~~~~~~_x000D__x000A_</S><S S="Error"> + CategoryInfo : PermissionDenied: (Microsoft.Secur...BootUefiCommand:ConfirmSecureBootUefiCommand) [Conf _x000D__x000A_</S><S S="Error"> irm-SecureBootUEFI], UnauthorizedAccessException_x000D__x000A_</S><S S="Error"> + FullyQualifiedErrorId : SetPrivilegeFailed,Microsoft.SecureBoot.Commands.ConfirmSecureBootUefiCommand_x000D__x000A_</S><S S="Error"> _x000D__x000A_</S></Objs>

BitLocker:
Unavailable: #< CLIXML
<Objs Version="1.1.0.1" xmlns="http://schemas.microsoft.com/powershell/2004/04"><Obj S="progress" RefId="0"><TN RefId="0"><T>System.Management.Automation.PSCustomObject</T><T>System.Object</T></TN><MS><I64 N="SourceId">1</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><Obj S="progress" RefId="1"><TNRef RefId="0" /><MS><I64 N="SourceId">2</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><Obj S="progress" RefId="2"><TNRef RefId="0" /><MS><I64 N="SourceId">3</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><S S="Error">Get-CimInstance : Access denied _x000D__x000A_</S><S S="Error">At C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\BitLocker\BitLocker.psm1:144 char:13_x000D__x000A_</S><S S="Error">+ Get-CimInstance `_x000D__x000A_</S><S S="Error">+ ~~~~~~~~~~~~~~~~~_x000D__x000A_</S><S S="Error"> + CategoryInfo : PermissionDenied: (root\cimv2\Secu...cryptableVolume:String) [Get-CimInstance], CimExcep _x000D__x000A_</S><S S="Error"> tion_x000D__x000A_</S><S S="Error"> + FullyQualifiedErrorId : HRESULT 0x80041003,Microsoft.Management.Infrastructure.CimCmdlets.GetCimInstanceCommand_x000D__x000A_</S><S S="Error"> _x000D__x000A_</S></Objs>

On the 2nd attempt on both basic and advanced report I am getting empty data... strange

Second Report
2. Windows Security / Defender
Microsoft Defender basic status:
No data returned.

Microsoft Defender exclusions (may require administrator rights to view):
No data returned.

Microsoft Defender recent threat/history summary:
No data returned.

3. Firewall
No data returned.

4. Secure Boot / BitLocker
Secure Boot:
No data returned.

BitLocker:
No data returned.

5. Windows Update / Pending Reboot
No data returned.
 
When I first ran the basic and advanced report, the firewall now reports correctly :) but there was still errors with Windows Defender and Secure Boot and Bitlocker.


First report:
3. Firewall
Name Enabled DefaultInboundAction DefaultOutboundAction
---- ------- -------------------- ---------------------
Domain True Block Allow
Private True Block Allow
Public True Block Allow

2. Windows Security / Defender
Microsoft Defender basic status:
AMServiceEnabled : False
AntispywareEnabled : False
AntivirusEnabled : False
BehaviorMonitorEnabled : False
IoavProtectionEnabled : False
NISEnabled : False
RealTimeProtectionEnabled : False
AntivirusSignatureVersion :
AntivirusSignatureLastUpdated :
QuickScanAge : 4294967295
FullScanAge : 4294967295
AMRunningMode : Not running
IsTamperProtected : False

Microsoft Defender exclusions (may require administrator rights to view):
Unavailable: #< CLIXML
<Objs Version="1.1.0.1" xmlns="http://schemas.microsoft.com/powershell/2004/04"><Obj S="progress" RefId="0"><TN RefId="0"><T>System.Management.Automation.PSCustomObject</T><T>System.Object</T></TN><MS><I64 N="SourceId">1</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><S S="Error">Get-MpPreference : Operation failed with the following error: 0x800106ba_x000D__x000A_</S><S S="Error">At line:2 char:10_x000D__x000A_</S><S S="Error">+ $prefs = Get-MpPreference_x000D__x000A_</S><S S="Error">+ ~~~~~~~~~~~~~~~~_x000D__x000A_</S><S S="Error"> + CategoryInfo : NotSpecified: (MSFT_MpPreference:root\Microsoft\...FT_MpPreference) [Get-MpPreference], _x000D__x000A_</S><S S="Error"> CimException_x000D__x000A_</S><S S="Error"> + FullyQualifiedErrorId : HRESULT 0x800106ba,Get-MpPreference_x000D__x000A_</S><S S="Error"> _x000D__x000A_</S></Objs>

Microsoft Defender recent threat/history summary:
No recent Microsoft Defender threat detections were returned.

4. Secure Boot / BitLocker
Secure Boot:
Unavailable: #< CLIXML
<Objs Version="1.1.0.1" xmlns="http://schemas.microsoft.com/powershell/2004/04"><Obj S="progress" RefId="0"><TN RefId="0"><T>System.Management.Automation.PSCustomObject</T><T>System.Object</T></TN><MS><I64 N="SourceId">1</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><S S="Error">Confirm-SecureBootUEFI : Unable to set proper privileges. Access was denied._x000D__x000A_</S><S S="Error">At line:2 char:10_x000D__x000A_</S><S S="Error">+ $value = Confirm-SecureBootUEFI_x000D__x000A_</S><S S="Error">+ ~~~~~~~~~~~~~~~~~~~~~~_x000D__x000A_</S><S S="Error"> + CategoryInfo : PermissionDenied: (Microsoft.Secur...BootUefiCommand:ConfirmSecureBootUefiCommand) [Conf _x000D__x000A_</S><S S="Error"> irm-SecureBootUEFI], UnauthorizedAccessException_x000D__x000A_</S><S S="Error"> + FullyQualifiedErrorId : SetPrivilegeFailed,Microsoft.SecureBoot.Commands.ConfirmSecureBootUefiCommand_x000D__x000A_</S><S S="Error"> _x000D__x000A_</S></Objs>

BitLocker:
Unavailable: #< CLIXML
<Objs Version="1.1.0.1" xmlns="http://schemas.microsoft.com/powershell/2004/04"><Obj S="progress" RefId="0"><TN RefId="0"><T>System.Management.Automation.PSCustomObject</T><T>System.Object</T></TN><MS><I64 N="SourceId">1</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><Obj S="progress" RefId="1"><TNRef RefId="0" /><MS><I64 N="SourceId">2</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><Obj S="progress" RefId="2"><TNRef RefId="0" /><MS><I64 N="SourceId">3</I64><PR N="Record"><AV>Preparing modules for first use.</AV><AI>0</AI><Nil /><PI>-1</PI><PC>-1</PC><T>Completed</T><SR>-1</SR><SD> </SD></PR></MS></Obj><S S="Error">Get-CimInstance : Access denied _x000D__x000A_</S><S S="Error">At C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\BitLocker\BitLocker.psm1:144 char:13_x000D__x000A_</S><S S="Error">+ Get-CimInstance `_x000D__x000A_</S><S S="Error">+ ~~~~~~~~~~~~~~~~~_x000D__x000A_</S><S S="Error"> + CategoryInfo : PermissionDenied: (root\cimv2\Secu...cryptableVolume:String) [Get-CimInstance], CimExcep _x000D__x000A_</S><S S="Error"> tion_x000D__x000A_</S><S S="Error"> + FullyQualifiedErrorId : HRESULT 0x80041003,Microsoft.Management.Infrastructure.CimCmdlets.GetCimInstanceCommand_x000D__x000A_</S><S S="Error"> _x000D__x000A_</S></Objs>

On the 2nd attempt on both basic and advanced report I am getting empty data... strange

Second Report
2. Windows Security / Defender
Microsoft Defender basic status:
No data returned.

Microsoft Defender exclusions (may require administrator rights to view):
No data returned.

Microsoft Defender recent threat/history summary:
No data returned.

3. Firewall
No data returned.

4. Secure Boot / BitLocker
Secure Boot:
No data returned.

BitLocker:
No data returned.

5. Windows Update / Pending Reboot
No data returned.
Sounds great, now we are making some progress! Can you please send me the exact steps to reproduce the bug where the values are not returned on the second time? I am trying to reproduce the bug, but there is something that you and I are doing differently, but if you tell me exactly how you are reproducing the bug, it will be a super easy fix. BTW, are you running it as admin or not... just curious.
 
Sorry now different steps taken, just downloaded new binary executed then ran first attempt showed the errors in both basic and detailed, and every other attempt "No data returned."
Hmmm, that is very odd, thank you for letting me know! Is there a chance that your security software is blocking SecureHelper? Can you please post actual screenshots where it says "No data returned." in the actual SecureHelper app? Better yet, if you can create a quick video of the bug and send it to support at cyberlock.global, we will have this figured out very quickly, thank you!
 
Hi, Video captured "archived and uploaded to OneDrive" and email sent to support at cyberlock.global

Thanks
Thank you for the video, that helped a lot!

I updated the code and now when the data cannot be extracted, it will tell us why in the report. So once we know why it cannot be extracted, we can fix whatever needs to be fixed.

SecureHelper 1.00 Demo
SHA-256: da2b16af5ffe35b9e4fa00f3797c1ad933af3df50bf7672ee3d2fd12b14a6d77
 
Hi
Thank you for the video, that helped a lot!

I updated the code and now when the data cannot be extracted, it will tell us why in the report. So once we know why it cannot be extracted, we can fix whatever needs to be fixed.

SecureHelper 1.00 Demo
SHA-256: da2b16af5ffe35b9e4fa00f3797c1ad933af3df50bf7672ee3d2fd12b14a6d77
Hi, Replied in the email with new screenshot - unfortunately no smoking gun only this is being written in the report.

"No data returned (the command completed with exit code 0 but wrote nothing to standard output or standard error)."
 
  • Like
Reactions: danb
Thank you for letting me know! This new version does not rely on powershell like it used to and I made several other changes as well. For example, you do not have to run Secure Helper elevated manually anymore because now there is a prompt that allows you to run the Advanced Security Snapshot elevated if you want to, and the Basic Security Snapshot does not require elevation at all.

Please let me know if you find anything else.

SecureHelper 1.00 Demo
SHA-256: 7396817810e20e42cfe7691968448349be3e7ca3f760bcfa4a599e26f2f3aef6
 
Thank you for letting me know! This new version does not rely on powershell like it used to and I made several other changes as well. For example, you do not have to run Secure Helper elevated manually anymore because now there is a prompt that allows you to run the Advanced Security Snapshot elevated if you want to, and the Basic Security Snapshot does not require elevation at all.

Please let me know if you find anything else.

SecureHelper 1.00 Demo
SHA-256: 7396817810e20e42cfe7691968448349be3e7ca3f760bcfa4a599e26f2f3aef6
HI, the download (removed the previous file ) appears to be the same hash as the previous release as I don't get the elevated prompt and still receive the - "No data returned (the command completed with exit code 0 but wrote nothing to standard output or standard error)." message

1783074554377.png
 
  • Like
Reactions: danb
It is the correct version, I just downloaded on my other computer to verify. Please use a different browser or app to download... it must be caching the old version.
No idea on that one.. Just downloaded and this one works perfectly, thanks for sticking with me :)

Will go ahead and test the other function.

1783096660754.png