Awesome Intune - Microsoft Intune Tools Directory

Ugur Koc

Intune Adaptive Engine

The Intune Adaptive Engine is a PowerShell automation tool that keeps Entra ID group membership in sync with live Intune device inventory through YAML-driven rules. It queries Graph API for Intune devices and detectedApps, evaluates per-rule conditions, and performs the minimal add/remove actions to keep groups in sync—no agents, no P1/P2 licensing, and no custom code; WhatIf/dry-run, per-rule dry runs, auto group creation, platform filtering, and CI/CD-ready rule sets are supported.

Created by

Niklas Bruhn

View on GitHubGitHub

Security Analysis

5of 6

1 Issue FoundOverride

10 files scanned on Apr 22, 2026

Issues Detected

No Obfuscated Code

No base64 encoded commands or hidden scripts

String building obfuscation in setup/Invoke-IAEDeployment.ps1 ([lines: 641](https://github.com/SSMacAdmin/intune-adaptive-engine/blob/main/setup/Invoke-IAEDeployment.ps1#L641))

Passed Checks

No Remote Execution

No Credential Theft

No Data Exfiltration

No Malicious Patterns

No Hardcoded Secrets

AI Analysis

No security issues detected. Code appears safe for an Intune management tool.

You might also like

Other

IntuneAppAssigner

IntuneAppAssigner is a PowerShell tool that enables bulk assignment of mobile apps in Microsoft Intune. It provides an interactive interface to select apps, choose assignment mode (replace, add, or review), set installation intent (Required, Available, Uninstall), and pick target groups (All users, All devices, or Entra ID groups). It also supports assignment filters and, for Android/iOS, App Config profiles (COPE/BYOD). Public Preview status is noted.

Nick Benton

Other

AutopilotProfileFunctions

AutopilotProfileFunctions is a PowerShell toolkit for Microsoft Intune that automates the creation and management of Windows Autopilot deployment profiles via the Graph API. It enables bulk profile generation (including language, deployment mode, join type, and device type), assigns profiles to regional dynamic groups, and supports CSV-based mass provisioning with customizable device naming templates. The result is scalable, repeatable Autopilot setup across global populations with minimal manual effort.

Amir Joseph Sayes

Other

EAM-AutoUpdater

EAM-AutoUpdater is a PowerShell-based automation tool for Microsoft Intune Enterprise Application Management (EAM) that detects available updates in the EAM catalog and automatically deploys new app versions. It migrates assignments, metadata, and Enrollment Status Page (ESP) configurations to the new version, handles supersedence by keeping only the latest two versions, and supports update rings, custom command-line parameters, app exclusions, and Teams notifications; it runs as an Azure Automation runbook with a managed identity or interactively for testing.

Janic Verboon

Other

EasyDefenderMacOS

EasyDefenderMacOS is a collection of importable Intune policies that streamline onboarding and offboarding macOS devices to Defender for Business/Endpoint. It supports personal work-profile and corporate-owned devices, integrates Defender with Intune, and uses an onboarding package with an optional offboarding package to automate policy deployment and Defender app configuration. The solution covers setup steps from Defender portal to Intune admin center and test enrollment on macOS.

Vlad Johansen