IntuneBrew is a PowerShell-based tool that simplifies the process of uploading and managing macOS applications in Microsoft Intune. It automates the entire workflow from downloading apps to uploading them to Intune, complete with proper metadata and logos.
- π¨ Public Preview Notice
- π Latest Updates
- β¨ Features
- π¬ Demo (New one is recorded ASAP because a lot has changed since this demo)
- π Getting Started
- π Usage
- π§ Configuration
- π Version Management
- π οΈ Error Handling
- π€ Troubleshooting
- π€ Contributing
- π License
- π Acknowledgments
- π Support
Important
π§ Public Preview Notice
IntuneBrew is currently in Public Preview. While it's fully functional, you might encounter some rough edges. Your feedback and contributions are crucial in making this tool better!
- π Submit Feedback
- π Report Bugs
- π‘ Request Features
Thank you for being an early adopter! π
Last checked: 2025-03-13 00:26 UTC
| Application | Previous Version | New Version |
|---|---|---|
| Microsoft Teams | 25031.1205.3471.1031 | 25044.2406.3471.4570 |
| Webex Teams | 45.3.0.31957 | 45.3.0.31978 |
| Signal | 7.45.1 | 7.46.0 |
| Zed | 0.176.3 | 0.177.7 |
| LM Studio | 0.3.12 | 0.3.13 |
| Zen Browser | 1.9b | 1.9.1b |
| Google Ads Editor | 2.8 | 2.9 |
| Downie | 4.9.7 | 4.9.8 |
| Remote Desktop Manager | 2024.3.10.4 | 2025.1.12.4 |
| Insta360 Studio | 5.5.2 | 5.5.3 |
- π Automated app uploads to Microsoft Intune
- π¦ Supports both .dmg and .pkg files
- π Automatic version checking and updates
- πΌοΈ Automatic app icon integration
- π Progress tracking for large file uploads
- π Secure authentication with Microsoft Graph API
- π― Smart duplicate detection
- π« Bulk upload support
- π Automatic retry mechanism for failed uploads
- π Secure file encryption for uploads
- π Real-time progress monitoring
- PowerShell 7.0 or higher
- Administrator rights (script must be installed as administrator, specially if you use "Install-Script IntuneBrew -Force")
- Microsoft.Graph.Authentication Module must be installed
- Azure App Registration with appropriate permissions OR Manual Connection via Interactive Sign-In
- Windows or macOS operating system
Download the script: IntuneBrew.ps1
Run the script:
.\IntuneBrew.ps1Follow the interactive prompts to:
- Select which apps to upload
- Authenticate with Microsoft Graph
- Monitor the upload progress
- View the results in Intune
| Application | Latest Version |
|---|---|
 1Password |
8.10.64 |
 Acorn |
8.1 |
 Adobe Acrobat Pro DC |
25.001.20432 |
 Adobe Acrobat Reader |
25.001.20432 |
 Airfoil |
5.12.4 |
 Airtable |
1.6.6 |
 Airy |
3.29.2 |
 Alacritty |
0.15.1 |
 Alfred |
5.6 |
 AltTab |
7.21.1 |
 Amadine |
1.6.7 |
 Amazon Chime |
5.23.22297 |
 Amazon Q |
1.7.0 |
 Android Studio |
2024.3.1.13 |
 Angry IP Scanner |
3.9.1 |
 Anki |
25.02 |
 Any.do |
5.0.68 |
 AnyDesk |
9.0.0 |
 Apidog |
2.7.0 |
 Apparency |
2.2 |
 Arc |
1.85.1 |
 Asana |
2.3.0 |
 Audacity |
3.7.2 |
 Autodesk Fusion 360 |
latest |
 AWS Corretto JDK |
21.0.6.7.1 |
 Azul Zulu Java Standard Edition Development Kit |
23.0.2 |
 Azure Data Studio |
1.51.1 |
 Badgeify |
1.5.8 |
 Bartender |
5.2.7 |
 Basecamp |
3 |
 BBEdit |
15.1.4 |
 Beeper |
3.110.1 |
 BetterDisplay |
3.4.1 |
 BetterMouse |
1.6 |
 BetterTouchTool |
5.268 |
 BetterZip |
5.3.4 |
 Beyond Compare |
5.0.6.30713 |
 Bitwarden |
2025.2.1 |
 Blender |
4.3.2 |
 blip |
1.1.5 |
 Blizzard Battle.net |
1.18.10.3141 |
 BoltAI |
1.33.2 |
 Boop |
1.4.0 |
 Boxcryptor |
3.13.680 |
 Brave |
1.76.74.0 |
 BreakTimer |
1.3.2 |
 Bruno |
1.39.1 |
 BusyCal |
2025.1.1 |
 BusyContacts |
2025.1.1 |
 Caffeine |
1.5.1 |
 calibre |
7.26.0 |
 Calmly Writer |
2.0.58 |
 Camtasia |
25.0.1 |
 Canva |
1.105.0 |
 CapCut |
3.3.0.1159 |
 ChatGPT |
1.2025.063 |
 Chrome Remote Desktop |
134.0.6998.6 |
 Cisco Jabber |
20241220015538 |
 Citrix Workspace |
24.11.10.22 |
 Claude |
0.8.0 |
 CleanMyMac |
5.0.6 |
 CLion |
2024.3.4 |
 Clipy |
1.2.1 |
 Cloudflare WARP |
2025.1.861.0 |
 CodeEdit |
0.3.3 |
 CodeRunner |
4.4.1 |
 Company Portal |
5.2412.0 |
 Crystalfetch |
2.1.1 |
 Cursor |
0.46.11 |
 Cyberduck |
9.1.3 |
 DaisyDisk |
4.31 |
 Dangerzone |
0.8.1 |
 Dataflare |
1.9.3 |
 DataGrip |
2024.3.5 |
 DataSpell |
2024.3.2 |
 DB Browser for SQLite |
3.13.1 |
 DbGate |
6.2.1 |
 DeepL |
25.3.11791994 |
 DevToys |
2.0.8.0 |
 DevUtils |
1.17.0 |
 Discord |
0.0.341 |
 Docker Desktop |
4.39.0 |
 Doughnut |
2.0.1 |
 Downie |
4.9.8 |
 draw.io Desktop |
26.0.16 |
 DrawBot |
3.132 |
 DriveDX |
1.12.1 |
 Dropbox |
219.4.4463 |
 DropDMG |
3.6.8 |
 Dropshare |
5.59 |
 DuckDuckGo |
1.129.0 |
 EasyFind |
5.0.2 |
 Eclipse Temurin Java Development Kit |
23.0.2 |
 Elephas |
11.094 |
 Elgato Camera Hub |
1.11.0.4022 |
 Elgato Stream Deck |
6.8.1.21263 |
 Elgato Wave Link |
2.0.4.3737 |
 Epic Games Launcher |
18.0.0 |
 Etcher |
2.1.0 |
 Evernote |
10.105.4 |
 f.lux |
42.2 |
 Fantastical |
4.0.5 |
 Figma |
125.1.5 |
 Fission |
2.8.8 |
 Flameshot |
12.1.0 |
 Foxit PDF Editor |
13.1.6 |
 FreeCAD |
1.0.0 |
 FreeMacSoft AppCleaner |
3.6.8 |
 FSMonitor |
1.2 |
 Geany |
2.0 |
 Geekbench |
6.4.0 |
 Geekbench AI |
1.2.0 |
 Gemini |
2.9.11 |
 Ghostty |
1.1.2 |
 gifox |
2.6.5 |
 GIMP |
2.10.38 |
 Git Credential Manager |
2.6.1 |
 GitFinder |
1.7.11 |
 GitHub Desktop |
3.4.18-19c76e1d |
 GitKraken |
10.8.0 |
 Godot Engine |
4.4 |
 Goland |
2024.3.4 |
 Google Ads Editor |
2.9 |
 Google Chrome |
134.0.6998.89 |
 Google Drive |
105.0.1 |
 Grammarly Desktop |
1.109.2.0 |
 Hammerspoon |
1.0.0 |
 HazeOver |
1.9.4 |
 Hidden Bar |
1.9 |
 Home Assistant |
2025.2 |
 HP Easy Admin |
2.15.0 |
 Hyper |
3.4.1 |
 Ice |
0.11.12 |
 IINA |
1.3.5 |
 iMazing |
3.1.1 |
 iMazing Profile Editor |
1.9.2 |
 Inkscape |
1.4.028868 |
 Insomnia |
10.3.1 |
 Insta360 Studio |
5.5.3 |
 IntelliJ IDEA Community Edition |
2024.3.4.1 |
 iTerm2 |
3.5.11 |
 Jabra Direct |
6.21.01701 |
 Jellyfin |
10.10.6 |
 Jetbrains PyCharm Community Edition |
2024.3.4 |
 JetBrains Toolbox |
2.5.4 |
 Joplin |
3.2.13 |
 Jumpcut |
0.84 |
 Jumpshare |
3.3.13 |
 Karabiner Elements |
15.3.0 |
 KeePassXC |
2.7.10 |
 Keeper Password Manager |
17.1.0 |
 Keka |
1.4.7 |
 Keybase |
6.5.0 |
 KeyClu |
0.29 |
 kitty |
0.40.0 |
 Klokki |
1.3.7 |
 Krisp |
2.55.8 |
 Krita |
5.2.9 |
 LangGraph Studio |
0.0.37 |
 LibreOffice |
25.2.1 |
 Little Snitch |
6.2.3 |
 LM Studio |
0.3.13 |
 Logitech G HUB |
2025.2.687008 |
 Logitech Options+ |
1.87.684086 |
 LookAway |
1.10.5 |
 Maccy |
2.3.0 |
 macFUSE |
4.9.1 |
 MacTeX |
2025.0308 |
 MenuBar Stats |
3.9 |
 Micro Snitch |
1.6.1 |
 Microsoft Auto Update |
4.77.24121924 |
 Microsoft Azure Storage Explorer |
1.37.0 |
 Microsoft Edge |
134.0.3124.62 |
 Microsoft Office |
16.95.25030928 |
 Microsoft Teams |
25044.2406.3471.4570 |
 Microsoft Visual Studio Code |
1.98.1 |
 Miro |
0.10.87 |
 mitmproxy |
11.1.3 |
 MongoDB Compass |
1.45.4 |
 Mountain Duck |
4.17.3 |
 Mounty for NTFS |
2.4 |
 Mozilla Firefox |
136.0.1 |
 NetBeans IDE |
25 |
 NoMachine |
8.16.1 |
 NordVPN |
8.35.2 |
 Nota Gyazo GIF |
9.7.2 |
 Notion |
4.6.2 |
 Notion Calendar |
1.129.0 |
 Nucleo |
4.1.6 |
 OBS |
31.0.2 |
 Obsidian |
1.8.9 |
 Ollama |
0.6.0 |
 OneDrive |
25.020.0202.0001 |
 OnyX |
4.6.2 |
 OpenVPN Connect client |
3.6.1 |
 Opera |
117.0.5408.93 |
 Oracle VirtualBox |
7.1.6 |
 OrbStack |
1.10.2 |
 Parallels Desktop |
20.2.2-55879 |
 PDF Expert |
3.10.12 |
 pgAdmin4 |
9.1 |
 Podman Desktop |
1.17.1 |
 Postman |
11.36.1 |
 PowerShell |
7.5.0 |
 Principle |
6.38 |
 Privileges |
2.2.0 |
 ProtonVPN |
4.8.0 |
 Rancher Desktop |
1.18.2 |
 Raycast |
1.93.2 |
 Real VNC Viewer |
7.13.1 |
 Rectangle |
0.86 |
 Remote Desktop Manager |
2025.1.12.4 |
 Remote Help |
1.0.2404171 |
 Rotato |
147 |
 RStudio |
2024.12.1 |
 Santa |
2025.2 |
 Shottr |
1.8.1 |
 Signal |
7.46.0 |
 Sketch |
101.8 |
 Slack |
4.43.44 |
 Snagit |
2025.0.0 |
 Splashtop Business |
3.7.2.4 |
 Spline |
0.12.5 |
 Spotify |
1.2.58.498 |
 Stats |
2.11.34 |
 Steam |
4.0 |
 Sublime Text |
4192 |
 Suspicious Package |
4.5 |
 Sync |
2.2.48 |
 Synology Drive |
3.5.2 |
 Tableau Desktop |
2024.3.4 |
 Tailscale |
1.80.2 |
 TeamViewer QuickSupport |
15 |
 Telegram for macOS |
11.8 |
 Termius |
9.16.0 |
 Todoist |
9.12.1 |
 Transmission |
4.0.6 |
 Transmit |
5.10.8 |
 UTM |
4.6.4 |
 Vivaldi |
7.1.3570.60 |
 VLC media player |
3.0.21 |
 VSCodium |
1.98.1.25070 |
 Webex Teams |
45.3.0.31978 |
 WebStorm |
2024.3.4 |
 WhatsApp |
2.25.3.81 |
 Windows App |
11.1.3 |
 Windsurf |
1.4.6 |
 WineHQ-stable |
10.0 |
 Wireshark |
4.4.5 |
 XMind |
25.01.01061-202501070704 |
 Yubikey Manager |
1.2.5 |
 Zed |
0.177.7 |
 Zen Browser |
1.9.1b |
 Zoom |
6.3.11.50104 |
Note
Missing an app? Feel free to request additional app support by creating an issue!
- Create a new App Registration in Azure
- Add the following API permissions:
- DeviceManagementApps.ReadWrite.All
- Update the parameters in the script with your Azure details.
- $appid = '' # App ID of the App Registration
- $tenantid = '' # Tenant ID of your EntraID
- $certThumbprint = '' # Thumbprint of the certificate associated with the App Registration
- Generate a self-signed certificate:
$cert = New-SelfSignedCertificate -Subject "CN=IntuneBrew" -CertStoreLocation "Cert:\CurrentUser\My" -KeyExportPolicy Exportable -KeySpec Signature -KeyLength 2048 -KeyAlgorithm RSA -HashAlgorithm SHA256 -NotAfter (Get-Date).AddYears(2)- Export the certificate:
$pwd = ConvertTo-SecureString -String "YourPassword" -Force -AsPlainText
Export-PfxCertificate -Cert $cert -FilePath "IntuneBrew.pfx" -Password $pwd- Upload to Azure App Registration:
- Go to your App Registration in Azure Portal
- Navigate to "Certificates & secrets"
- Upload the public key portion of your certificate
Apps are defined in JSON files with the following structure:
{
"name": "Application Name",
"description": "Application Description",
"version": "1.0.0",
"url": "https://download.url/app.dmg",
"bundleId": "com.example.app",
"homepage": "https://app.homepage.com",
"fileName": "app.dmg"
}IntuneBrew implements sophisticated version comparison logic:
- Handles various version formats (semantic versioning, build numbers)
- Supports complex version strings (e.g., "1.2.3,45678")
- Manages version-specific updates and rollbacks
- Provides clear version difference visualization
Version comparison rules:
- Main version numbers are compared first (1.2.3 vs 1.2.4)
- Build numbers are compared if main versions match
- Special handling for complex version strings with build identifiers
IntuneBrew includes robust error handling mechanisms:
-
Upload Retry Logic
- Automatic retry for failed uploads (up to 3 attempts)
- Exponential backoff between retries
- New SAS token generation for expired URLs
-
File Processing
- Temporary file cleanup
- Handle locked files
- Memory management for large files
-
Network Issues
- Connection timeout handling
- Bandwidth throttling
- Resume interrupted uploads
-
Authentication
- Token refresh handling
- Certificate expiration checks
- Fallback to interactive login
-
File Access Errors
- Ensure no other process is using the file
- Try deleting temporary files manually
- Restart the script
-
Upload Failures
- Check your internet connection
- Verify Azure AD permissions
- Ensure file sizes don't exceed Intune limits
-
Authentication Issues
- Verify your Azure AD credentials
- Check tenant ID configuration
- Ensure required permissions are granted
Contributions are welcome! Please feel free to submit a Pull Request. For major changes, please open an issue first to discuss what you would like to change.
- Fork the Project
- Create your Feature Branch (
git checkout -b feature/AmazingFeature) - Commit your Changes (
git commit -m 'Add some AmazingFeature') - Push to the Branch (
git push origin feature/AmazingFeature) - Open a Pull Request
This project is licensed under the MIT License - see the LICENSE file for details.
- Thanks to all contributors who have helped shape IntuneBrew
- Microsoft Graph API documentation and community
- The PowerShell community for their invaluable resources
If you encounter any issues or have questions:
- Check the Issues page
- Review the troubleshooting guide
- Open a new issue if needed
Made with β€οΈ by Ugur Koc