Disable virtualization-based security (VBS)
- Windows onlyThis script improves your privacy on Windows
- Single actionThis page belongs to a script, containing basic changes to achieve a task.
- Impact: High
System Functionality / Data Loss Risk: High
This action improves privacy with high impact when you run the recommended script.
- Batch (batchfile)These changes use Windows system commands to update your settings.
- Administrator rights requiredThis script requires privilege access to do the system changes
- Fully reversible
You can fully restore this action (revert back to the original behavior) using this website.
The restore/revert methods provided here can help you fix issues.
Overview
This script disables Virtualization-based Security (VBS) in Windows.
Virtualization-based security (VBS) uses hardware virtualization to create an isolated, secure environment 1. This environment helps protect vital system and operating system resources, as well as security assets like authenticated user credentials 1. VBS requires Secure Boot to run 1 2.
VBS includes a memory integrity feature 1, also called hypervisor-protected code integrity (HVCI) 1 and hypervisor enforced code integrity 1. It protects Windows by running kernel mode code integrity within the isolated virtual environment 1.
Initially released as part of Defender Device Guard 1 this feature is now part of Defender Application Control 3 4. Although the Device Guard brand is no longer used, it still appears in some Windows registry settings 1 5. VBS and its memory integrity feature now operate independently 5.
This script may enhance privacy by giving you more control over your system. VBS isolates kernel mode drivers and executables, preventing modifications 1. For example, you may want to disable Defender, which collects telemetry and personal data 6. Disabling Defender requires disabling its kernel drivers 7, which are protected by VBS. Disabling VBS allows for deeper system-level changes to improve privacy.
This script may also improve system performance. VBS can slow down apps and games by 5 to 15% 8.
However, disabling VBS has security implications:
- It reduces protection against credential theft.
- It makes the system more vulnerable to certain types of malware.
- If you disable VBS, you will automatically disable Credential Guard, which relies on VBS 9. Credential Guard uses VBS to store credentials and other secrets in a protected environment 10. This environment is isolated from the operating system 10.
This action may reduce system security by removing protections that block malicious code from accessing critical components.
Technical Details
This script modifies multiple registry keys to disable VBS and its features:
- Disables VBS through:
- Disables Secure Boot and DMA protection 2 9 11 through:
- Disables memory integrity 2 11 through:
- Disables UEFI lock 11 through:
- Disables boot prevention if VBS modules fail 11 through:
HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!Mandatory
11
- Disables signature check:
HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!RequireMicrosoftSignedBootChain
12
- Disable Hypervisor-Protected Code Integrity (HVCI):
- Not Advised
This script should only be used by advanced users.
This script is not recommended for daily use as it breaks important functionality.
Consider creating a system restore point before doing any changes.
- Security Trade-off
This action prioritizes privacy over certain security features. It's not recommended and should only be used by advanced users after understanding its implications.
Increased Privacy
Enhanced privacy through reduced data collection and trackingDecreased Security
Some security features will be disabled or limitedThis script can be reversed, this action allows you to can restore the system security.
Sources
- Virtualization-based Security (VBS). Microsoft Learn. learn.microsoft.com. (2024).
Original: https://learn.microsoft.com/en-us/windows-hardware/design/device-experiences/oem-vbs
Archived: https://archive.ph/2024.10.27-183734/https://learn.microsoft.com/en-us/windows-hardware/design/device-experiences/oem-vbs - Turn On Virtualization Based Security. admx.help. (2024).
Original: https://admx.help
Archived: https://archive.ph/2024.10.27-183749/https://admx.help/?Category=Windows_10_2016&Policy=Microsoft.Windows.DeviceGuard::VirtualizationBasedSecurity - Manage Windows Defender Application Control - Configuration Manager. Microsoft Learn. learn.microsoft.com. (2024).
Original: https://learn.microsoft.com/en-us/mem/configmgr/protect/deploy-use/use-device-guard-with-configuration-manager
Archived: https://archive.ph/2024.10.27-183749/https://learn.microsoft.com/en-us/mem/configmgr/protect/deploy-use/use-device-guard-with-configuration-manager - Allt om Guard-funktionerna i Windows 10 - Coligo. coligo.se. (2024).
Original: https://coligo.se/allt-om-guard-funktionerna-i-windows-10
Archived: https://archive.ph/2024.10.27-183757/https://coligo.se/allt-om-guard-funktionerna-i-windows-10/ - App Control for Business and virtualization-based code integrity. Microsoft Learn. learn.microsoft.com. (2024).
Original: https://learn.microsoft.com/en-us/windows/security/application-security/application-control/introduction-to-virtualization-based-security-and-appcontrol
Archived: https://archive.ph/2024.10.27-183804/https://learn.microsoft.com/en-us/windows/security/application-security/application-control/introduction-to-virtualization-based-security-and-appcontrol - Cloud protection and Microsoft Defender Antivirus. Microsoft Learn. learn.microsoft.com. (2024).
Original: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/cloud-protection-microsoft-defender-antivirus
Archived: https://web.archive.org/web/20240409170914/https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/cloud-protection-microsoft-defender-antivirus?view=o365-worldwide - Microsoft Defender Antivirus Mini-Filter Driver - Windows 10 Service - batcmd.com. batcmd.com. (2024).
Original: https://batcmd.com/windows/10/services/wdfilter
Archived: https://web.archive.org/web/20240314062047/https://batcmd.com/windows/10/services/wdfilter/ - How to Disable VBS and Speed Up Windows 11 or 10. Tom's Hardware. www.tomshardware.com. (2024).
Original: https://www.tomshardware.com/how-to/disable-vbs-windows-11
Archived: https://archive.ph/2024.10.27-183828/https://www.tomshardware.com/how-to/disable-vbs-windows-11 - Configure Credential Guard. Microsoft Learn. learn.microsoft.com. (2024).
Original: https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/configure
Archived: https://archive.ph/2024.10.27-184035/https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/configure?tabs=intune - Credential Guard overview. Microsoft Learn. learn.microsoft.com. (2024).
Original: https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard
Archived: https://archive.ph/2024.10.27-183844/https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/ - Enable memory integrity. Microsoft Learn. learn.microsoft.com. (2024).
Original: https://learn.microsoft.com/en-us/windows/security/hardware-security/enable-virtualization-based-protection-of-code-integrity
Archived: https://archive.ph/2024.10.27-183852/https://learn.microsoft.com/en-us/windows/security/hardware-security/enable-virtualization-based-protection-of-code-integrity - MSLab/Scenarios/DeviceGuard/VBS/readme.md at 9ffe26645187515e0ff40c517cb06eb92786e267 · privacysexy-forks/MSLab. github.com. (2024).
Original: https://github.com/privacysexy-forks/MSLab/blob/9ffe26645187515e0ff40c517cb06eb92786e267/Scenarios/DeviceGuard/VBS/readme.md
Archived: https://archive.ph/2024.10.29-181636/https://github.com/privacysexy-forks/MSLab/blob/9ffe26645187515e0ff40c517cb06eb92786e267/Scenarios/DeviceGuard/VBS/readme.md - Deploy Device Guard - enable virtualization-based security (Windows 10). technet.microsoft.com. (2016).
Original: https://technet.microsoft.com/en-us/itpro/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security
Archived: https://web.archive.org/web/20161201052946/https://technet.microsoft.com/en-us/itpro/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security - Windows Defender Device Guard and Windows Defender Credential Guard hardware readiness tool. Microsoft Learn. learn.microsoft.com. (2022).
Original: https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/dg-readiness-tool
Archived: https://web.archive.org/web/20221123184040/https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/dg-readiness-tool
Apply Now
Choose one of three ways to apply:
Download script
Download and run the script directly- No app needed
- Offline usage
- Easy-to-apply
- Free
- Open-source
Help
How to apply or restore "Disable virtualization-based security (VBS)" using script
- ≈ 2 min to complete
- Tools: Web Browser
- Difficulty: Simple
- ≈ 5 instructions
- 1
Download
Download the script file by clicking on thebutton above.
Use button above to restore changes. - 2
Keep the file
If warned by your browser, keep the file. - 3
Open
Open the downloaded file. - 4
Exit
Once it's done, press any key to exit the window. - 5
Restart
Restart your computer for all changes to take effect.
Apply with privacy.sexy
Guided, automated application with safety checks- Recommended for most users
- Includes safety checks
- Free
- Open-source
- Popular
- Offline/Online usage
Help
How to apply or restore "Disable virtualization-based security (VBS)" using privacy.sexy
- ≈ 3 min to complete
- Tools: privacy.sexy
- Difficulty: Simple
- ≈ 4 instructions
- 2
Choose script
- Search for the script name: Disable virtualization-based security (VBS)
- Check the script by clicking on the checkbox.
- 3
Run
Click on ▶️ Run button at the bottom of the page.This button only appears on desktop version (recommended). On browser, use 💾 Save button.
- Apply
- Revert
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!EnableVirtualizationBasedSecurity"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard' /v 'EnableVirtualizationBasedSecurity' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard!EnableVirtualizationBasedSecurity"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard'; $data = '0'; reg add 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' /v 'EnableVirtualizationBasedSecurity' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!RequirePlatformSecurityFeatures"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard' /v 'RequirePlatformSecurityFeatures' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard!RequirePlatformSecurityFeatures"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard'; $data = '0'; reg add 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' /v 'RequirePlatformSecurityFeatures' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!Locked"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard' /v 'Locked' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!NoLock"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard'; $data = '1'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard' /v 'NoLock' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!Unlocked"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard'; $data = '1'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard' /v 'Unlocked' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity!Locked"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity' /v 'Locked' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!RequireMicrosoftSignedBootChain"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard' /v 'RequireMicrosoftSignedBootChain' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity!Enabled"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity' /v 'Enabled' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard!HypervisorEnforcedCodeIntegrity"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard'; $data = '0'; reg add 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' /v 'HypervisorEnforcedCodeIntegrity' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard!Mandatory"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard' /v 'Mandatory' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity!HVCIMATRequired"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity'; $data = '0'; reg add 'HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity' /v 'HVCIMATRequired' /t 'REG_DWORD' /d "^""$data"^"" /f"
:: Set the registry value: "HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard!HVCIMATRequired"
PowerShell -ExecutionPolicy Unrestricted -Command "$registryPath = 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard'; $data = '0'; reg add 'HKLM\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' /v 'HVCIMATRequired' /t 'REG_DWORD' /d "^""$data"^"" /f"
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
Help
How to apply or restore "Disable virtualization-based security (VBS)" using commands
- ≈ 2 min to complete
- Tools: Command Prompt
- Difficulty: Medium
- ≈ 3 instructions
- 1
Open Command Prompt
Open Command Prompt as Administrator. - 2
Copy code
Copy the code: - 3
Paste & run
Paste the commands into Command Prompt and press Enter to run.Some changes require a system restart to take effect
Similar Guides
Wider Goal
Guides below includes this guide to achieve a wider goal.See other more general settings that includes this one as one of its actions.
These plans combine multiple privacy settings, including this one, for stronger protection.
- Disable system modification restrictions
- Disable Defender
- Privacy over security
This category disables features that restrict system modifications in Windows. This enables deeper system modifications, enhancing privacy by allowing the removal ...
This category offers scripts to disable Windows security components related to Defender. Defender is also referred to as Microsoft Defender or Windows Defender. Al...
Steps to privacy over security on your Windows machine to enhance data privacy protection. Together with that, this feature walks through the procedure to undo the...
Same Goal
Other guides in Disable system modification restrictionsSee settings that are in the same category as this guide.
Using other actions in the same category may help you achieve your goal better.
About the Creators
These people have authored this documentation and written its scripts:
Reviewed By
This guide has undergone comprehensive auditing and peer review:Expert review by undergroundwires
- Verified technical accuracy and editorial standards
- Assessed system impact and user privacy risks
Public review by large community
- Privacy enthusiasts and professionals peer-reviewed
- Millions of end-users tested across different environments
History
We continually monitor our guides, their impact and all other privacy options. We update our guides when new information becomes available. On every update, we publicly store who made the change, what has been changed, why the change was made and when the change was made.