Disable Windows Security Health Core
Apply Now
Works with Windows 10 and 11Works with Windows Vista, XP, 7, 8, 10, 11, and Windows Server 2008 or newer.
- Single actionThis page belongs to a script, containing basic changes to achieve a task.
- Windows onlyThis script improves your privacy on Windows
- Impact: HighSystem Functionality Loss Risk: High
This action improves privacy with high impact when you run the recommended script. - Batch (batchfile)These changes use Windows system commands to update your settings.
- Fully reversible
You can fully restore this action (revert back to the original behavior) using this website.
The restore/revert methods provided here can help you fix issues.
Overview
This script disables the Windows Security Health Core component.
Windows Security Health Core is a system library that manages security settings, monitors system integrity, and interfaces with various security features 2 3. It provides status information to both the system and users, handling security-related Windows services 3.
Disabling this component may enhance privacy by limiting the system's monitoring and reporting of security-related activities. It may slightly improve system performance by removing background processes related to security monitoring.
However, this action may significantly reduce system security by disabling essential security features and monitoring. This can make your system more vulnerable to threats and malware.
Caution
Disabling this component weakens Windows security monitoring, potentially leaving your system exposed to undetected threats.
Technical Details
The script removes the library file located at %SYSTEMROOT%\System32\SecurityHealthCore.dll 1.
- Not Advised
This script should only be used by advanced users.
This script is not recommended for daily use as it breaks important functionality.
Consider creating a system restore point before doing any changes.
- Security Trade-off
This action prioritizes privacy over certain security features. It's not recommended and should only be used by advanced users after understanding its implications.
Increased Privacy
Enhanced privacy through reduced data collection and trackingDecreased Security
Some security features will be disabled or limitedThis script can be reversed, this allows you to restore the default system security.
Sources
PrivacyLearn.com maintains strict sourcing standards for accuracy, integrity and up-to-date content. Our content relies on authoritative sources including vendor documentation, industry standards, and verified research. Learn more about our verification process and quality standards in our editorial standards page.
- nickel-x64/WinSxS/Manifests/amd64_windows-shield-provider_31bf3856ad364e35_10.0.22621.1_none_078b8e81c1191957.manifest at b3f8c9549e49f2a92b401b3809b210d5f78190ba · privacysexy-forks/nickel-x64. github.com. (2024).
Original: https://github.com/privacysexy-forks/nickel-x64/blob/b3f8c9549e49f2a92b401b3809b210d5f78190ba/WinSxS/Manifests/amd64_windows-shield-provider_31bf3856ad364e35_10.0.22621.1_none_078b8e81c1191957.manifest
Archived: https://web.archive.org/web/20240912123628/https://github.com/privacysexy-forks/nickel-x64/blob/b3f8c9549e49f2a92b401b3809b210d5f78190ba/WinSxS/Manifests/amd64_windows-shield-provider_31bf3856ad364e35_10.0.22621.1_none_078b8e81c1191957.manifest - 10_0_22622_601/C/Windows/System32/SecurityHealthCore.dll.coff at c598035e1a6627384d646140fe9e4d234b36b11d · privacysexy-forks/10_0_22622_601. github.com. (2024).
Original: https://github.com/privacysexy-forks/10_0_22622_601/blob/c598035e1a6627384d646140fe9e4d234b36b11d/C/Windows/System32/SecurityHealthCore.dll.coff
Archived: https://web.archive.org/web/20240912131843/https://github.com/privacysexy-forks/10_0_22622_601/blob/c598035e1a6627384d646140fe9e4d234b36b11d/C/Windows/System32/SecurityHealthCore.dll.coff - 10_0_22622_601/C/Windows/System32/SecurityHealthCore.dll.strings at c598035e1a6627384d646140fe9e4d234b36b11d · privacysexy-forks/10_0_22622_601. github.com. (2024).
Original: https://github.com/privacysexy-forks/10_0_22622_601/blob/c598035e1a6627384d646140fe9e4d234b36b11d/C/Windows/System32/SecurityHealthCore.dll.strings
Archived: https://web.archive.org/web/20240912131842/https://github.com/privacysexy-forks/10_0_22622_601/blob/c598035e1a6627384d646140fe9e4d234b36b11d/C/Windows/System32/SecurityHealthCore.dll.strings
Apply Now
Choose one of three ways to apply:
Download script
Download and run the script directly- No app needed
- Offline usage
- Easy-to-apply
- Free
- Open-source
Help
How to apply or restore "Disable Windows Security Health Core" using script
- ≈ 2 min to complete
- Tools: Web Browser
- Difficulty: Simple
- ≈ 5 instructions
- 1
Download
Download the script file by clicking on the button above.
Use button above to restore changes. - 2
Keep the file
If warned by your browser, keep the file. - 3
Open
Open the downloaded file. - 4
Exit
Once it's done, press any key to exit the window. - 5
Restart
Restart your computer for all changes to take effect.
Apply with privacy.sexy
Guided, automated application with safety checks- Recommended for most users
- Includes safety checks
- Free
- Open-source
- Popular
- Offline/Online usage
Open privacy.sexy
Help
How to apply or restore "Disable Windows Security Health Core" using privacy.sexy
- ≈ 3 min to complete
- Tools: privacy.sexy
- Difficulty: Simple
- ≈ 4 instructions
- 2
Choose script
- Search for the script name: Disable Windows Security Health Core
- Check the script by clicking on the checkbox.
- 3
Run
Click on ▶️ Run button at the bottom of the page.This button only appears on desktop version (recommended). On browser, use 💾 Save button.
- Apply
- Revert
Apply changes
:: Soft delete files matching pattern: "%SYSTEMROOT%\System32\SecurityHealthCore.dll" with additional permissions
:: This operation will not run on Windows versions earlier than Windows11-FirstRelease.
PowerShell -ExecutionPolicy Unrestricted -Command "$versionName = 'Windows11-FirstRelease'; $buildNumber = switch ($versionName) { 'Windows11-FirstRelease' { '10.0.22000' }; 'Windows11-22H2' { '10.0.22621' }; 'Windows11-21H2' { '10.0.22000' }; 'Windows10-22H2' { '10.0.19045' }; 'Windows10-21H2' { '10.0.19044' }; 'Windows10-20H2' { '10.0.19042' }; 'Windows10-1909' { '10.0.18363' }; 'Windows10-1607' { '10.0.14393' }; default { throw "^""Internal privacy$([char]0x002E)sexy error: No build for minimum Windows '$versionName'"^""; }; }; $minVersion = [System.Version]::Parse($buildNumber); $ver = [Environment]::OSVersion.Version; $verNoPatch = [System.Version]::new($ver.Major, $ver.Minor, $ver.Build); if ($verNoPatch -lt $minVersion) { Write-Output "^""Skipping: Windows ($verNoPatch) is below minimum $minVersion ($versionName)"^""; Exit 0; }; $pathGlobPattern = "^""%SYSTEMROOT%\System32\SecurityHealthCore.dll"^""; $expandedPath = [System.Environment]::ExpandEnvironmentVariables($pathGlobPattern); Write-Host "^""Searching for items matching pattern: `"^""$($expandedPath)`"^""."^""; $renamedCount = 0; $skippedCount = 0; $failedCount = 0; Add-Type -TypeDefinition "^""using System;`r`nusing System.Runtime.InteropServices;`r`npublic class Privileges {`r`n [DllImport(`"^""advapi32.dll`"^"", ExactSpelling = true, SetLastError = true)]`r`n internal static extern bool AdjustTokenPrivileges(IntPtr htok, bool disall,`r`n ref TokPriv1Luid newst, int len, IntPtr prev, IntPtr relen);`r`n [DllImport(`"^""advapi32.dll`"^"", ExactSpelling = true, SetLastError = true)]`r`n internal static extern bool OpenProcessToken(IntPtr h, int acc, ref IntPtr phtok);`r`n [DllImport(`"^""advapi32.dll`"^"", SetLastError = true)]`r`n internal static extern bool LookupPrivilegeValue(string host, string name, ref long pluid);`r`n [StructLayout(LayoutKind.Sequential, Pack = 1)]`r`n internal struct TokPriv1Luid {`r`n public int Count;`r`n public long Luid;`r`n public int Attr;`r`n }`r`n internal const int SE_PRIVILEGE_ENABLED = 0x00000002;`r`n internal const int TOKEN_QUERY = 0x00000008;`r`n internal const int TOKEN_ADJUST_PRIVILEGES = 0x00000020;`r`n public static bool AddPrivilege(string privilege) {`r`n try {`r`n bool retVal;`r`n TokPriv1Luid tp;`r`n IntPtr hproc = GetCurrentProcess();`r`n IntPtr htok = IntPtr.Zero;`r`n retVal = OpenProcessToken(hproc, TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, ref htok);`r`n tp.Count = 1;`r`n tp.Luid = 0;`r`n tp.Attr = SE_PRIVILEGE_ENABLED;`r`n retVal = LookupPrivilegeValue(null, privilege, ref tp.Luid);`r`n retVal = AdjustTokenPrivileges(htok, false, ref tp, 0, IntPtr.Zero, IntPtr.Zero);`r`n return retVal;`r`n } catch (Exception ex) {`r`n throw new Exception(`"^""Failed to adjust token privileges`"^"", ex);`r`n }`r`n }`r`n public static bool RemovePrivilege(string privilege) {`r`n try {`r`n bool retVal;`r`n TokPriv1Luid tp;`r`n IntPtr hproc = GetCurrentProcess();`r`n IntPtr htok = IntPtr.Zero;`r`n retVal = OpenProcessToken(hproc, TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, ref htok);`r`n tp.Count = 1;`r`n tp.Luid = 0;`r`n tp.Attr = 0; // This line is changed to revoke the privilege`r`n retVal = LookupPrivilegeValue(null, privilege, ref tp.Luid);`r`n retVal = AdjustTokenPrivileges(htok, false, ref tp, 0, IntPtr.Zero, IntPtr.Zero);`r`n return retVal;`r`n } catch (Exception ex) {`r`n throw new Exception(`"^""Failed to adjust token privileges`"^"", ex);`r`n }`r`n }`r`n [DllImport(`"^""kernel32.dll`"^"", CharSet = CharSet.Auto)]`r`n public static extern IntPtr GetCurrentProcess();`r`n}"^""; [Privileges]::AddPrivilege('SeRestorePrivilege') | Out-Null; [Privileges]::AddPrivilege('SeTakeOwnershipPrivilege') | Out-Null; $adminSid = New-Object System.Security.Principal.SecurityIdentifier 'S-1-5-32-544'; $adminAccount = $adminSid.Translate([System.Security.Principal.NTAccount]); $adminFullControlAccessRule = New-Object System.Security.AccessControl.FileSystemAccessRule( $adminAccount, [System.Security.AccessControl.FileSystemRights]::FullControl, [System.Security.AccessControl.AccessControlType]::Allow ); $foundAbsolutePaths = @(); try { $foundAbsolutePaths += @(; Get-Item -Path $expandedPath -ErrorAction Stop | Select-Object -ExpandProperty FullName; ); } catch [System.Management.Automation.ItemNotFoundException] { <# Swallow, do not run `Test-Path` before, it's unreliable for globs requiring extra permissions #>; }; $foundAbsolutePaths = $foundAbsolutePaths | Select-Object -Unique | Sort-Object -Property { $_.Length } -Descending; if (!$foundAbsolutePaths) { Write-Host 'Skipping, no items available.'; exit 0; }; Write-Host "^""Initiating processing of $($foundAbsolutePaths.Count) items from `"^""$expandedPath`"^""."^""; foreach ($path in $foundAbsolutePaths) { if (Test-Path -Path $path -PathType Container) { Write-Host "^""Skipping folder (not its contents): `"^""$path`"^""."^""; $skippedCount++; continue; }; if($revert -eq $true) { if (-not $path.EndsWith('.OLD')) { Write-Host "^""Skipping non-backup file: `"^""$path`"^""."^""; $skippedCount++; continue; }; } else { if ($path.EndsWith('.OLD')) { Write-Host "^""Skipping backup file: `"^""$path`"^""."^""; $skippedCount++; continue; }; }; $originalFilePath = $path; Write-Host "^""Processing file: `"^""$originalFilePath`"^""."^""; if (-Not (Test-Path $originalFilePath)) { Write-Host "^""Skipping, file `"^""$originalFilePath`"^"" not found."^""; $skippedCount++; exit 0; }; $originalAcl = Get-Acl -Path "^""$originalFilePath"^""; $accessGranted = $false; try { $acl = Get-Acl -Path "^""$originalFilePath"^""; $acl.SetOwner($adminAccount) <# Take Ownership (because file is owned by TrustedInstaller) #>; $acl.AddAccessRule($adminFullControlAccessRule) <# Grant rights to be able to move the file #>; Set-Acl -Path $originalFilePath -AclObject $acl -ErrorAction Stop; $accessGranted = $true; } catch { Write-Warning "^""Failed to grant access to `"^""$originalFilePath`"^"": $($_.Exception.Message)"^""; }; if ($revert -eq $true) { $newFilePath = $originalFilePath.Substring(0, $originalFilePath.Length - 4); } else { $newFilePath = "^""$($originalFilePath).OLD"^""; }; try { Move-Item -LiteralPath "^""$($originalFilePath)"^"" -Destination "^""$newFilePath"^"" -Force -ErrorAction Stop; Write-Host "^""Successfully processed `"^""$originalFilePath`"^""."^""; $renamedCount++; if ($accessGranted) { try { Set-Acl -Path $newFilePath -AclObject $originalAcl -ErrorAction Stop; } catch { Write-Warning "^""Failed to restore access on `"^""$newFilePath`"^"": $($_.Exception.Message)"^""; }; }; } catch { Write-Error "^""Failed to rename `"^""$originalFilePath`"^"" to `"^""$newFilePath`"^"": $($_.Exception.Message)"^""; $failedCount++; if ($accessGranted) { try { Set-Acl -Path $originalFilePath -AclObject $originalAcl -ErrorAction Stop; } catch { Write-Warning "^""Failed to restore access on `"^""$originalFilePath`"^"": $($_.Exception.Message)"^""; }; }; }; }; if (($renamedCount -gt 0) -or ($skippedCount -gt 0)) { Write-Host "^""Successfully processed $renamedCount items and skipped $skippedCount items."^""; }; if ($failedCount -gt 0) { Write-Warning "^""Failed to process $($failedCount) items."^""; }; [Privileges]::RemovePrivilege('SeRestorePrivilege') | Out-Null; [Privileges]::RemovePrivilege('SeTakeOwnershipPrivilege') | Out-Null"
Restore changes
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
Help
How to apply or restore "Disable Windows Security Health Core" using commands
- ≈ 2 min to complete
- Tools: Command Prompt
- Difficulty: Medium
- ≈ 3 instructions
- 1
Open Command Prompt
Open Command Prompt as Administrator. - 2
Copy code
Copy the code: - 3
Paste & run
Paste the commands into Command Prompt and press Enter to run.Some changes require a system restart to take effect
Similar Guides
Wider Goal
Guides below includes this guide to achieve a wider goal.See other more general settings that includes this one as one of its actions.These plans combine multiple privacy settings, including this one, for stronger protection.
- Disable Defender interface background services
- Disable Windows Security interface
- Disable Defender
- Privacy over security
This category provides scripts to disable background services supporting Defender interface elements. These services enable real-time updates and interac...
This category offers scripts to disable or modify different aspects of the Windows Security user interface, formerly known as Windows Defender Security C...
This category offers scripts to disable Windows security components related to Defender. Defender is also referred to as Microsoft Defender or Windows De...
Same Goal
Other guides in Disable Defender interface background services See settings that are in the same category as this guide.Using other actions in the same category may help you achieve your goal better.
See all 10 guides
About the Creators
These people have authored this documentation and written its scripts:
undergroundwires- Certified security professional
- 7+ years experience securing banks
- Open-source developer since 2005
- EU advisor, Public Speaker, Moderator
- Open-Source Contributors
- Hundreds across the globe
- Testers, reviewers, developers
- Companies, military agencies
- Community since 2017
Reviewed By
This guide has undergone comprehensive auditing and peer review:Expert review by undergroundwires
- Verified technical accuracy and editorial standards
- Assessed system impact and user privacy risks
- Audited and verified using automated security tests
Public review by large community
- Privacy enthusiasts and professionals peer-reviewed
- Millions of end-users tested across different environments
- Audited and verified using third-party security software
History
We continually monitor our guides, their impact and other potential privacy options. We update our guides when new information becomes available. On every update, we publicly store who made the change, what has been changed, why the change was made and when the change was made.