Block the Quick Assist Binary

IntuneDetection.ps1

# Intune Detection
if (!(Get-DnsClientNrptRule -ErrorAction SilentlyContinue | Where-Object -FilterScript {
         ($_.Namespace -eq 'remotehelp.microsoft.com')
}))
{
   Write-Host -Object 'Namespace entry was not found'
   exit 1
}
else
{
   Write-Host -Object 'Namespace entry was found'
   exit 0
}

IntuneRemediation.ps1

# Intune Remediation
if (!(Get-DnsClientNrptRule -ErrorAction SilentlyContinue | Where-Object -FilterScript {
         ($_.Namespace -eq 'remotehelp.microsoft.com')
}))
{
   Add-DnsClientNrptRule -Namespace 'remotehelp.microsoft.com' -NameServers '0.0.0.0' -Verbose -ErrorAction Stop -Confirm:$false
}

Invoke-CreateNewDenyWDACConfig.ps1

# Create the blocking policy
New-DenyWDACConfig -InstalledAppXPackages -PackageName 'MicrosoftCorporationII.QuickAssist' -PolicyName 'Quick Assist Block'

Invoke-InstallWDACConfigModule.ps1

# Install the required module
Install-Module -Name WDACConfig

Invoke-RemoveExistingDnsClientNrptRule.ps1

(Get-DnsClientNrptRule -ErrorAction SilentlyContinue | Where-Object -FilterScript {
         ($_.Namespace -eq 'remoteassistance.support.services.microsoft.com')
}) | Remove-DnsClientNrptRule -Force -Confirm:$false

Invoke-UpdateDnsClientNrptRule.ps1

# Break the domain name
if (!(Get-DnsClientNrptRule -ErrorAction SilentlyContinue | Where-Object -FilterScript {
         ($_.Namespace -eq 'remotehelp.microsoft.com')
}))
{
   Add-DnsClientNrptRule -Namespace 'remotehelp.microsoft.com' -NameServers '0.0.0.0' -Verbose -ErrorAction Continue -Confirm:$false
}