Bypassing the arbitrary hardware requirements for Win11

Motivation: I need a winshit vm in order to capture packets from a windows machine. Win11 is intentionally difficult to virtualize but luckily we can modify certain values in the registry to make this possible. These modifications should work for most hardware configurations. I still, however, do not recommend using windows in any capacity.

Boot the windows installation disk and when the language selection window appears, type Shift+F10 to open the command prompt. In order to make this as foolproof as possible, below are registry commands that bypass TPM, secure boot, and ram requirements. 

Microsoft Windows [Version 10.0.22621.1702]
(c) Microsoft Corporation. All rights reserved. 

X:\sources>REG ADD HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig
The operation completed successfully. 

X:\sources>REG ADD HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig /v BypassTPMCheck /t REG_DWORD /d 1
The operation completed successfully. 

X:\sources>REG ADD HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig /v BypassSecureBootCheck /t REG_DWORD /d 1
The operation completed successfully. 

X:\sources>REG ADD HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig /v BypassRamCheck /t REG_DWORD /d 1
The operation completed successfully. 

X:\sources>REG ADD HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig /v BypassCPUCheck /t REG_DWORD /d 1
The operation completed successfully. 

X:\sources>REG QUERY HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig 

HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig
	(Default)		REG_SZ
	BypassTPMCheck		REG_Dword	0x1
	BypassSecureBootCheck	REG_Dword	0x1
	BypassRamCheck		REG_Dword	0x1
	BypassCPUCheck		REG_Dword	0x1

Proceed with the installation as normal.

To create an offline user account, simply disable internet connectivity during the installation process. If disconnecting from the internet does not work, open the command prompt again and run ncpa.cpl, navigate to and disable your network interface, proceed to create an offline account. Be sure to re-enable this interface if you intend to use this machine on the network.

After installation there are a few nice things you can do. If you are installing win11 in KVM, you should download and drivers from virtio-win.iso. Do not give microsoft money, instead use the massgravel microsoft activation scripts to spit in the face of the corporation that refuses to pay out on windows refund day.

Updating the system will inevitably require repeating these steps. To disable updates, we can modify the registry again. 

Microsoft Windows [Version 10.0.22621.1702]
C:\Windows\System32>REG ADD HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate 
The operation completed successfully. 

C:\Windows\System32>REG ADD HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
The operation completed successfully. 

C:\Windows\System32>REG ADD HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v NoAutoUpdate /t REG_DWORD /d 1
The operation completed successfully.

I will never pay microsoft. I will never use windows. All I want is to educate end users on how to use the things they own as they see fit with absolute disregard for any and all restrictions placed upon them by the manufacturer.

If this website has been useful or interesting to you, consider leaving a donation with Monero:
86MhLkDofbCNqtk8daRfM4N6yXqLXyv6taZDejpK9uTYXSfZbyjoxbwGX21JrQbY754gxfiMbwV3qXbWvCyZ2bJBUnA37hx
or (less preferably) with Bitcoin:
bc1qapwjaen8w252r04wm8fr7wgcvexvdm2tmp5zaz
All content is licensed as CC BY-NC-SA 4.0 unless otherwise specified.
If you have ever wanted to write something and publish it online but didn't know how or didn't want to set up a website, visit justletmewrite.org. It is a website I built for writing high effort blogs and essays. No javascrit, minimal BS, RSS feeds for every user.
anybrowser | openbsd