Profile migrations without the compliance blind spot.
Standard migration tooling moves data. It doesn’t prove what changed, validate what will break, or give your auditors anything to review. AppProfileSafe closes that gap — manifest-driven backup and restore with preflight validation, diff-based dry runs, and a tamper-evident audit trail. Free for manual migrations. Licensed for automation and SIEM.
Community Edition — full GUI, unlimited apps, no registration.
Community Edition
Free
Full GUI with unlimited applications. Export, Import, Simulation, Dry Run, Preflight, Mapping, local Audit Log. No registration, no time limit.
Enterprise Edition
Per device / year
Everything in Community plus CLI automation, Event Pipeline (SIEM & Webhooks), Compliance Reports, and email support. See pricing →
Core capabilities
Four systems that make migrations auditable
AppProfileSafe isn’t a backup tool with logging bolted on. Audit, validation, and change control are architectural primitives — not add-ons.
Dry Run with Diff Report
Run a full simulation against the live system before committing anything. The diff report shows every registry key, file, and ACL that would change — with Created, Changed, and Unchanged counts per application.
Export and import both support dry run. The diff CSV is hash-linked to the audit trail for tamper detection.
Tamper-Evident Audit Trail
Every operation — export, import, simulation, integrity check — is recorded in an HMAC hash-chained local audit log. The Audit Log Viewer verifies chain integrity on demand.
Community Edition includes local audit logging. Enterprise adds SIEM forwarding (CEF, LEEF, JSON, Syslog), webhook delivery, and automated Compliance Reports. Enterprise
Path Mapping Engine
Rewrite registry paths and file system paths during import when usernames, drive letters, or directory structures differ between source and target. Rules are defined in XML and applied deterministically.
Mapping transformations are applied after environment variable expansion, in the same order for both live imports and dry runs.
Preflight Validation
Before any export or import, preflight checks validate environment prerequisites: manifest paths, app definitions, disk space, XSD schemas, and system readiness. Issues surface before the operation starts — not halfway through.
GUI shows preflight results before every operation. CLI supports --preflight as a pipeline gate with structured exit codes. CLI: Enterprise
USMT (User State Migration Tool) has been deprecated by Microsoft. Scripts provide no governance layer by design. Enterprise = requires Enterprise license. All other features are included in the free Community Edition.
Under the hood
Architecture built for enterprise operations
AppProfileSafe is a .NET 8 desktop application with a 4-layer architecture: Shared foundation, Core business logic, and separate GUI and CLI presentation layers.
Event Envelope System
Every audit event is wrapped in a ProfileSafeEvent envelope containing context (user, machine, domain), a typed payload, severity classification, and a deterministic event ID for deduplication. Six payload types cover export, import, simulation, licensing, preflight, and audit operations.
Health & Integrity Checks
On every startup, the application verifies audit log integrity (hash chain continuity, sequence gaps, diff CSV hashes) and validates the license. Enterprise additionally tests SIEM connectivity and confirms event pipeline readiness. Failures are reported to the dashboard.
Redaction Engine Enterprise
Before events leave the system, the redaction engine applies per-sink policies that mask, hash, or remove sensitive fields. Policies are defined in XML with dot-notation field paths and validated against XSD. SIEM sinks can enforce strict redaction while webhooks use moderate rules.
CLI Automation Enterprise
The CLI supports export, import, preflight, and compliance reporting with full parameter validation. Whitelist-based argument checking ensures only valid parameter combinations per mode. UNC network shares authenticate via credential store or explicit credentials for Scheduled Task scenarios.
Enterprise
// Preflight: validate before anything changes ❯ AppProfileSafe.exe --preflight--import--manifestFile"\\server\backups\Manifest.xml"--apps"Firefox,Chrome"--mappingFile"C:\Mappings\prod.xml"✓ Preflight passed — 9/9 checks OK
// Export to network share with credential store ❯ AppProfileSafe.exe --export--manifestFile"\\server\backups\Manifest.xml"--apps"Firefox,Chrome"--unc-credential-store✓ Export completed — 2 apps, 847 entries
Community Edition includes the full GUI with unlimited applications, simulation, mapping, and local audit logging. No registration, no time limit. Enterprise adds CLI automation, SIEM integration, and compliance reporting.
Architecture
Understand the system design, event pipeline, and audit model.
