That would be nice
That would have been grand. If it did not require you to run the BIGGER snooper on which it piggibacks. So for a lot of us it is no different from a standalone MDM agent.
Google’s released a Chrome extension that lets admins snoop on the state of PCs accessing its cloudy productivity and infrastructure products. The “Endpoint Verification” extension works on Chrome OS, MacOS or Windows devices. The latter two platforms need a “native helper” too. Once installed, the software lets admins create …
Fundamentally, this scheme needs to assume that the local Chrome install and the extension are untampered-with. But I don't see how it can guarantee that.
Let's say I am a black hat. I'll observe the extension under a debugger, track which system calls are made to do the checks it does. Then patch the binary to just always return a good answer. Presto, compromised extension, which I will bundle with my malware to replace the existing extension.