https://github.com/mikeroyal/Windows-11-Guide
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
https://github.com/mikeroyal/Windows-11-Guide
active-directory debloat gaming hardening nextcloud optimization privacy-protection tweaks uwp visual-studio-code windows-11 windows-defender windows-desktop windows-subsystem-linux windows-terminal windows10 windows11 winui winui3 wsl
Last synced: about 1 year ago
JSON representation
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
- Host: GitHub
- URL: https://github.com/mikeroyal/Windows-11-Guide
- Owner: mikeroyal
- Created: 2021-07-08T21:08:54.000Z (almost 5 years ago)
- Default Branch: main
- Last Pushed: 2024-01-04T22:55:22.000Z (over 2 years ago)
- Last Synced: 2025-04-08T10:17:25.618Z (about 1 year ago)
- Topics: active-directory, debloat, gaming, hardening, nextcloud, optimization, privacy-protection, tweaks, uwp, visual-studio-code, windows-11, windows-defender, windows-desktop, windows-subsystem-linux, windows-terminal, windows10, windows11, winui, winui3, wsl
- Language: C#
- Homepage:
- Size: 623 KB
- Stars: 1,564
- Watchers: 19
- Forks: 73
- Open Issues: 4
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- Security: Security Glossary.md
Awesome Lists containing this project
- jimsghstars - mikeroyal/Windows-11-Guide - Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources. (C# #)
- awesome-hacktop-daily - Windows 11 Guide đ˝
README
Windows 11 Guide
#### A guide on setting up your Windows 11 Desktop with all the essential Applications, Tools, and Games to make your experience with Windows 11 great!
**Note: You can easily convert this markdown file to a PDF in [VSCode](https://code.visualstudio.com/) using this handy extension [Markdown PDF](https://marketplace.visualstudio.com/items?itemName=yzane.markdown-pdf).**
# Table of Contents
1. [Getting Started](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#getting-started)
- [Windows 11 Desktop](https://github.com/mikeroyal/Windows-11-Guide#windows-11-desktop)
- [Windows 11 on ARM](#windows-on-arm)
- [Bypass Windows 11's TPM, CPU and RAM Requirements](https://github.com/mikeroyal/Windows-11-Guide#bypass-Windows-11-requirements)
- [Creating a Local Account on Windows 11 Home and Pro](https://github.com/mikeroyal/Windows-11-Guide#Creating-a-Local-Account-on-Windows-11-Home-and-Pro)
- [Removing the Windows 11 Watermark for Unsupported Hardware](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#removing-the-windows-11-watermark)
- [Optimizing Windows 11](#optimizing-windows-11)
- [Ways to Customize Windows 11 Look and Feel](https://github.com/mikeroyal/Windows-11-Guide#Ways-to-Customize-Windows-11-Look-and-Feel)
- [Installing drivers for Windows the easy way](https://github.com/mikeroyal/Windows-11-Guide#installing-drivers-for-windows)
* [General Drivers](#General-Drivers)
- [Microsoft Office Alternatives](https://github.com/mikeroyal/Windows-11-Guide#microsoft-office-alternatives)
- [Replacing OneDrive with Nextcloud](#Replacing-OneDrive-with-Nextcloud)
- [Secure & Privacy-focused Web Browsers](https://github.com/mikeroyal/Windows-11-Guide#secure--privacy-focused-web-browsers)
* [Privacy & Security Focused Browser extensions](https://github.com/mikeroyal/Windows-11-Guide#privacy--security-focused-browser-extensions)
* [Privacy-focused Search Engines](https://github.com/mikeroyal/Windows-11-Guide#privacy-focused-search-engines)
- [Systems Management](#systems-management)
* [Setting up Active Directory](#setting-up-active-directory)
- [Windows Security Hardening](https://github.com/mikeroyal/Windows-11-Guide#windows-security-hardening)
- [Encryption Tools](#encryption-tools)
- [Virtual Private Network (VPN)](#vpn)
- [SSH](#ssh)
- [Firewall Filtering](#firewall-filtering)
- [Network Packet Filtering with eBPF](#network-packet-filtering-with-ebpf)
- [Multifactor Authentication (MFA)](#mfa)
- [Windows Forensic Analysis](#windows-forensic-analysis)
- [Disk Image Creation Tools](#disk-image-creation-tools)
- [Evidence Collection](#evidence-collection)
- [Incident Management](#incident-management)
- [Sandboxing/Reversing Tools](#sandboxingreversing-tools)
- [File Sync/Transfer](#File-SyncTransfer)
- [Storage Disk Health/Data Recovery](https://github.com/mikeroyal/Windows-11-Guide#Storage-Disk-HealthData-Recovery)
- [Reset/Restore Windows 11](#resetrestore-windows-11)
- [Backups](#Backups)
- [Battery Health](https://github.com/mikeroyal/Windows-11-Guide#Battery-Health)
2. [Getting Software](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#getting-software)
3. [Gaming](#Gaming)
- [Gaming Resources for Windows](#Gaming-Resources-for-Windows)
- [Gaming on Xbox Game Pass](#gaming-on-xbox-game-pass)
- [Manage/Control Fans (CPU, GPU, and motherboard)](#managecontrol-fans)
- [Gaming Peripherals](#Gaming-Peripherals)
* [Gaming mice, keyboards, and headsets](#RGB-Devices)
* [Game Controllers](#Game-controllers)
- [Graphics](#Graphics)
* [NVIDIA](#NVIDIA)
* [AMD](#AMD)
* [Intel ARC](#Intel-ARC)
- [Setting up DXVK on Windows](#Setting-up-DXVK-on-Windows)
- [Improving Game Performance & Load Times](#Improving-Game-Performance--Load-Times)
* [DirectStorage](#DirectStorage)
* [NVIDIA RTX IO](#NVIDIA-RTX-IO)
* [AMD StoreMI](#AMD-StoreMI)
* [IntelÂŽ Rapid Storage Technology (IntelÂŽ RST)](#Intel-RST)
- [Setting up OBS Studio](#Setting-up-OBS-Studio)
* [Useful OBS Studio 3rd party Plugins & Themes](#useful-obs-studio-3rd-party-plugins-and-themes)
- [Discord](#Discord)
- [Twitch](#Twitch)
- [Sleep/Suspend Games](#sleepsuspend-games)
- [Game Stores & Launchers](#Game-Stores--Launchers)
* [Steam](#Steam)
* [Heroic Games Launcher](#heroic-games-launcher)
* [Playnite](#Playnite)
* [Launchbox](#Launchbox)
* [Razor Cortex](#Razor-Cortex)
* [Epic Games Store](#Epic-games-store)
* [Blizzard Battle.net](#Blizzard-Battlenet)
* [Origin](#Origin)
* [EA Play](#EA-Play)
* [Ubisoft Connect](#Ubisoft-Connect)
* [Rockstar Games](#Rockstar-Games)
* [GOG Galaxy Store](#GOG-Galaxy)
* [Itch.io Store](#Itchio-Store)
* [FF XIV Launcher](#FFXIV-Launcher)
- [Game Streaming](#Game-streaming)
* [Cloud Game Streaming](#Cloud-Game-Streaming)
* [Local Game Streaming](#Local-Game-Streaming)
- [Playing Android Games](#Android-Games)
* [Amazon App Store](#Amazon-App-Store)
* [BlueStacks](#BlueStacks)
* [Google Play games for PC](#Google-Play-Games-for-PC)
* [Aurora Store](#Aurora-Store)
* [F-Droid](#F-Droid)
* [Magisk on WSA](#Magisk-on-WSA)
- [Game Emulators](#Game-emulators)
* [Emulator Frontends](#Frontends)
* [Nintendo GameCube & Wii](#Nintendo-GameCube--Wii)
* [Nintendo Switch](#Nintendo-Switch)
* [Nintendo 64](#Nintendo-64)
* [Nintendo 3DS](#Nintendo-3DS)
* [Nintendo DS](#Nintendo-DS)
* [Super Nintendo Entertainment System (SNES)](#Super-Nintendo-Entertainment-System-SNES)
* [Nintendo Entertainment System (NES)](#Nintendo-Entertainment-System)
* [Game Boy Advance](#Game-Boy-Advance)
* [DOS](#DOS)
* [Atari](#Atari)
* [Sega Dreamcast](#Sega-Dreamcast)
* [PlayStation Portable](#PlayStation-Portable)
* [PlayStation 1](#PlayStation-1)
* [PlayStation 2](#PlayStation-2)
* [PlayStation 3](#PlayStation-3)
* [Xbox](#Xbox)
* [MAME](#MAME)
- [Performance Benchmarks](#Performance-benchmarks)
4. [Windows Subsystem for Android (WSA)](https://github.com/mikeroyal/Windows-11-Guide#windows-subsystem-for-android-wsa)
- [Getting started with Windows Subsystem for Android](https://github.com/mikeroyal/Windows-11-Guide#getting-started-with-windows-subsystem-for-android)
- [Windows Subsystem for Android Settings](https://github.com/mikeroyal/Windows-11-Guide#windows-subsystem-for-android-settings)
- [WSA Toolbox](https://github.com/mikeroyal/Windows-11-Guide#wsa-toolbox)
5. [Windows Subsystem for Linux (WSL)](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#windows-subsystem-for-linux-wsl)
- [WSL Learning Resources](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#wsl-learning-resources)
- [WSL Tools and Projects](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#wsl-tools--projects)
- [Setting up WSL Linux Distributions](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#setting-up-wsl-linux-distributions)
6. [Windows Terminal](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#windows-terminal)
7. [Visual Studio and VSCode](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#visual-studio-and-vscode)
- [Visual Studio Extensions for Developer Productivity](https://github.com/mikeroyal/Windows-11-Guide#Visual-Studio-Extensions-for-Developer-Productivity)
- [VS Code Extensions for Developer Productivity](https://github.com/mikeroyal/Windows-11-Guide#VS-Code-Extensions-for-Developer-Productivity)
8. [Game Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#game-development)
9. [Setting up a macOS Workspace](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#setting-up-a-macos-workspace)
10. [Android Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#android-development)
11. [Professional Audio/Video Editing](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#professional-audio--video-editing)
12. [3D Graphics and Design](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#3d-graphics-and-design)
13. [Kubernetes](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#kubernetes)
14. [Machine Learning](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#machine-learning)
15. [Robotics](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#robotics)
16. [Open Source Security](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#open-source-security)
17. [Differential Privacy](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#differential-privacy)
18. [DevOps](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#devops)
19. [.NET Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#net-development)
20. [C# Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#c-development)
21. [F# Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#f-development)
22. [PowerShell Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#powershell-development)
23. [TypeScript Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#typescript-development)
24. [React Native Development](https://github.com/mikeroyal/Windows-11-Guide#react-native-development)
25. [ElectronJS Development](https://github.com/mikeroyal/Windows-11-Guide#electron-development)
26. [C/C++ Development](https://github.com/mikeroyal/Windows-11-Guide#cc-development)
27. [Java Development](https://github.com/mikeroyal/Windows-11-Guide#java-development)
28. [Python Development](https://github.com/mikeroyal/Windows-11-Guide#python-development)
29. [Ruby Development](https://github.com/mikeroyal/Windows-11-Guide#ruby-development)
30. [Flutter Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#flutter-development)
31. [Node.js Development](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#nodejs-development)
32. [Networking](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#networking)
33. [Databases](https://github.com/mikeroyal/Windows-11-Guide/blob/main/README.md#databases)
# Getting Started
[Getting started with your new Windows 11 PC](https://www.microsoft.com/en-us/windows/windows-11)
[Windows 11 Installation Assistant](https://www.microsoft.com/en-us/software-download/windows11)
[Update to Windows Subsystem for Android⢠on Windows 11](https://blogs.windows.com/windows-insider/2022/03/08/update-to-windows-subsystem-for-android-on-windows-11-for-windows-insiders/)
[Getting Started with the DirectX 12 Agility SDK](https://devblogs.microsoft.com/directx/gettingstarted-dx12agility/)
[Microsoft Windows Server](https://www.microsoft.com/en-us/windows-server/) is the operating system that connects on-premises environments with [Azure](https://azure.microsoft.com), adding additional layers of security while helping you modernize your applications and infrastructure.
[Windows as a Service (WaaS)](https://docs.microsoft.com/en-us/windows/deployment/update/waas-overview) is a new development concept, introduced with the release of Windows 11. It simplifies the jobs of IT professionals and maintains a consistent Windows 11 experience for all Windows customers. These improvements primarily focus on maximizing customer involvement in Windows development, simplifying the deployment and servicing of Windows client computers, and leveling out the resources needed to deploy and maintain Windows over time.
[Windows Virtual Desktop](https://azure.microsoft.com/en-us/services/virtual-desktop/) is a service that enables a secure, remote desktop experience from anywhere.
[Windows 365 Cloud PC](https://www.microsoft.com/en-us/windows-365) is a service that provides a secure way to stream your Windows experience including your personalized apps, content, and settings from the Microsoft cloud([Azure](https://azure.microsoft.com/)) to any device with your Windows 365 Cloud PC. Available August 2nd, 2021.
[Microsoft Dynamics 365](https://dynamics.microsoft.com/en-us/) is the essential business solution for busy professionals who need to engage with customers while staying productive at work and on the go. Arrive prepared for every appointment and update notes, tasks, and attachments. Along with relevant service and sales records.
[Microsoft Edge](https://www.microsoft.com/edge) is a cross-platform web browser developed by Microsoft. It is supported on Windows 11, Windows 10, Xbox, Android, iOS, macOS, and as a [preview for Linux](https://www.microsoftedgeinsider.com/en-us/download/?platform=linux).
[Microsoft Azure](https://azure.microsoft.com) is a public cloud computing platform that comes with solutions developed by Microsoft including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Windows as a Service (WaaS), and Software as a Service (SaaS) that can be used for services such as analytics, virtual computing, storage, networking, and security.
[VMware Horizon Cloud on Microsoft Azure](https://azure.microsoft.com/en-us/services/virtual-desktop/vmware-horizon-cloud/) is a desktop virtualization service available in Azure Marketplace. Simplify your delivery of on-premises and cloud virtual desktops and applications by connecting your instance of Azure to VMware.
[Citrix Virtual Apps and Desktops for Azure](https://azure.microsoft.com/en-us/services/virtual-desktop/citrix-virtual-apps-desktops-for-azure/) is a desktop and app virtualization service available through Azure Marketplace or agreements with Citrix. Use familiar tools to manage on-premises Citrix deployments alongside Windows Virtual Desktop on Azure, supporting cloud modernization while maximizing your existing investment.
[DirectStorage API](https://devblogs.microsoft.com/directx/directstorage-is-coming-to-pc/) is an API in the DirectX family originally designed for the [Velocity Architecture](https://news.xbox.com/en-us/2020/07/14/a-closer-look-at-xbox-velocity-architecture/) to Windows. The DirectX API is architected in a way that takes all this into account and maximizes performance throughout the entire pipeline from NVMe drive all the way to the GPU. It does this in several ways: by reducing per-request NVMe overhead, enabling batched many-at-a-time parallel IO requests which can be efficiently fed to the GPU, and giving games better control over when they get notified of IO request completion instead of having to react to every tiny IO completion. The DirectStorage API will be available on [Windows 11](https://www.microsoft.com/en-us/windows/windows-11) PCs with NVMe SSDs, but will also be support in [Windows 10](https://www.microsoft.com/software-download/windows10) version 1909 and newer.
[WinDirStat(Windows Directory Statistics)](https://windirstat.net/) is a disk usage statistics viewer and cleanup tool for various versions of Microsoft Windows.
[eBPF for Windows](https://github.com/microsoft/ebpf-for-windows) is an eBPF implementation that runs on top of Windows. eBPF is a well-known technology for providing programmability and agility, especially for extending an OS kernel, for use cases such as DoS protection and observability.
[Sysinternals Suite](https://docs.microsoft.com/en-us/sysinternals/downloads/sysinternals-suite) is the entire set of Sysinternals Utilities rolled up into a single download. Also, checkout the [Sysinternals Utilities Index](https://docs.microsoft.com/en-us/sysinternals/downloads/).
[Secure boot](https://docs.microsoft.com/en-us/windows-hardware/design/device-experiences/oem-secure-boot) is a security standard developed by members of the PC industry to help make sure that a device boots(Unified Extensible Firmware Interface (UEFI) BIOS) using only software(such as bootloaders, OS, UEFI drivers, and utilities) that is trusted by the Original Equipment Manufacturer (OEM).
[Microsoft Defender Security Center](https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-security-center?view=o365-worldwide) is a user portal where you can access Microsoft Defender for Endpoint capabilities. It gives enterprise security operations teams a single pane of glass experience to help secure networks.
[BitLocker Drive Encryption](https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-overview) is a data protection feature that integrates with the operating system and addresses the threats of data theft or exposure from lost, stolen, or inappropriately decommissioned computers. BitLocker provides the most protection when used with a Trusted Platform Module (TPM) version 1.2 or later.
## Windows 11 Desktop
[Back to the Top](https://github.com/mikeroyal/Windows-11-Guide#table-of-contents)
**Windows 11 Desktop with new Start menu. Source: [Microsoft](https://www.microsoft.com/en-us/windows/windows-11)**
**By Default the Start menu and icons are centered. Source: [Microsoft](https://www.microsoft.com/en-us/windows/windows-11)**
**In system settings to change the position of the Start menu back to the Left-side layout. Source: [Microsoft](https://www.microsoft.com/en-us/windows/windows-11)**
**Windows 11 desktop with the traditional Left-side layout. Source: [Microsoft](https://www.microsoft.com/en-us/windows/windows-11)**
**Easily snap the layout of your Desktop Apps on Windows 11. Source: [Microsoft](https://www.microsoft.com/en-us/windows/windows-11)**
## Windows on ARM
* [Windows Dev Kit 2023 (Project Volterra) | Microsoft Learn](https://learn.microsoft.com/en-us/windows/arm/dev-kit/)
* [Windows Apps on Arm | Microsoft Developer](https://developer.microsoft.com/en-us/windows/arm/)
* [Visual Studio on ARM powered devices](https://learn.microsoft.com/en-us/visualstudio/install/visual-studio-on-arm-devices?view=vs-2022)
* [Windows on Arm documentation | Microsoft Learn](https://learn.microsoft.com/en-us/windows/arm/overview)
* [Add support Arm devices to your Windows app | Microsoft Learn](https://learn.microsoft.com/en-us/windows/arm/add-arm-support)
* [Windows Arm-based PCs FAQ - Microsoft Support](https://support.microsoft.com/en-us/windows/windows-arm-based-pcs-faq-477f51df-2e3b-f68f-31b0-06f5e4f8ebb5)
* [Update app architecture from ARM32 to ARM64 | Microsoft Learn](https://learn.microsoft.com/en-us/windows/arm/arm32-to-arm64)
* [Add support Arm devices to your Windows app | Microsoft Learn](https://learn.microsoft.com/en-us/windows/arm/add-arm-support)
* [Best native apps for Windows on ARM in 2023](https://www.xda-developers.com/windows-arm-apps/)
* [List of Windows ARM games | PCGamingWiki](https://www.pcgamingwiki.com/wiki/List_of_Windows_ARM_games)
* [Xbox Cloud Gaming is available on Windows PCs running ARM64 on newer Surface devices(2022 or later) and upcoming devices with the Snapdragon X Elite chip.](https://www.xbox.com/play)
[ARM64EC (âEmulation Compatibleâ)](https://docs.microsoft.com/en-us/windows/uwp/porting/arm64ec) is an application binary interface (ABI) for Windows 11 on ARM that runs with native speed and is interoperable with x64 architecture. An app, process, or even a module can freely mix and match with ARM64EC and x64 as needed. The ARM64EC code in the app will run natively while any x64 code will run using Windows 11 on ARMâs built-in emulation. The ARM64EC ABI differs slightly from the current [ARM64 ABI](https://docs.microsoft.com/en-us/cpp/build/arm64-windows-abi-conventions?view=msvc-160) in ways that make it binary compatible with x64 code. Specifically, the ARM64EC ABI follows x64 software conventions including calling convention, stack usage, and data alignment, making ARM64EC and x64 interoperable. Apps built as ARM64EC may contain x64 code but do not have to, since ARM64EC is its own complete, first-class ABI for Windows.
**NOTE:** Qualcomm's Snapdragon X Elite chip will be available in mobile devices starting Mid-2024.
[Snapdragon X Elite](https://www.qualcomm.com/news/releases/2023/10/qualcomm-unleashes-snapdragon-x-elite--the-ai-super-charged-plat) is its all-new custom CPU architecture, codenamed Oryon. The X Elite includes a total of **12 Oryon cores**, rather than a mix of large and small cores like Qualcomm has used in past designs. When all cores are active, they can run at peak speeds of up to **3.8 GHz**, though when just one or two cores are boosting they can go up to **4.3 GHz**.
* Qualcomm says that the X Elite's Adreno GPU has upgradeable drivers, which means new capabilities can be added over time. it will support a **4K 120 Hz laptop display**, plus a total of **three 4K external displays (or two 5K external displays)**. The GPU supports the DirectX 12 graphics APIâno Vulkan support, at least not yetâand Qualcomm says it will feature **upgradeable drivers**. Qualcomm compared the X Elite's GPU performance to both [Intel's Iris Xe](https://www.intel.com/content/www/us/en/products/details/discrete-gpus/iris-xe.html) and [AMD's Radeon 780M](https://www.amd.com/en/products/apu/amd-ryzen-7-7840u). The Adreno GPU is reportedly up to 2x as fast as the Iris Xe and up to 80% faster than the Radeon 780M, while using about one-fifth as much power.
* The chip also includes respectable media encoding and decoding capabilities, with support for **hardware-accelerated H.264, H.265/HEVC, and AV1 video encoding and decoding**, plus hardware-accelerated decoding support for the **VP9 codec**.
* The X Elite can use up to **64GB of LPDDR5x RAM** with up to **136 GB/s of memory bandwidth** to the chip. The image signal processor (ISP) supports up to 64 MP cameras and 4K HDR video capture. The chip supports **PCIe 4.0 NVMe SSDs and the UFS 4.0 and SD 3.0 storage standards**, as well as up to **three USB 4 ports (plus two more 10 Gbps USB 3.2 gen 2 ports)**.
Image credit: Qualcomm
Image credit: Qualcomm
Image credit: Qualcomm
Image credit: Qualcomm
Image credit: Qualcomm
Image credit: Qualcomm
### Snapdragon X Elite Benchmarks
|Geekbench 6 |(multi-core) scores|
|-------------|-----------------|
|Snapdragon X Elite (Config A)| 15,130|
|Snapdragon X Elite (Config B)| 14,000|
|Apple M2| 8,911|
|Apple M2 Pro| 14,965|
|Apple M2 Max| 14,939|
|Intel Core i7-13000H| 12,171|
|3DMark | Wild Life Extreme Unlimited |
|-------------|-----------------|
|Snapdragon X Elite| 44.5 fps (Config A) | 39 fps (Config B)|
|MacBook Pro 14-inch M2 Pro| 73 fps|
|MacBook Pro 14-inch M2 Max| 80 fps|
|MacBook Pro 13-inch M2 | 40.5 fps|
## Bypass Windows 11 Requirements
[Back to the Top](https://github.com/mikeroyal/Windows-11-Guide#table-of-contents)
**Note 1: Before performing any upgrade to your system make sure to do a full backup of your system in case anything happens during the upgrade process!**
**Note 2: Some anti-cheat software for video games(like Valorant) will require TPM, Secure Boot on Windows 11.**
[Ways to install Windows 11 on Unsupported hardware | Microsoft Support](https://support.microsoft.com/en-us/windows/ways-to-install-windows-11-e0edbbfb-cfc5-4011-868b-2ce77ac7c70e)
[Fido](https://github.com/pbatard/Fido) is a PowerShell script that is primarily designed to be used in [Rufus](https://github.com/pbatard/rufus), but that can also be used in standalone fashion, and whose purpose is to automate access to the official Microsoft Windows retail ISO download links as well as provide convenient access to bootable UEFI Shell images.
Fido
**OR**
[Rufus](https://rufus.ie/) is a utility that helps format and create bootable USB flash drives.
Rufus
**In Rufus 3.19:**
Add a new selection dialog for Windows 11 setup customization:
* Secure Boot and TPM bypass have now been moved to this dialog.
* Allows to bypass the mandatory requirement for a Microsoft account on Windows 11 22H2.
**(Note: Network must be temporarily disabled for the local account creation to be proposed).**
* Added an option to skip all collection questions (Sets all answers to âDonât allowâ).
* Added an option for setting internal drives offline for Windows To Go.
Rufus 3.19 Windows 11 setup customization.
## Creating a Local Account on Windows 11 Home and Pro
[Back to the Top](https://github.com/mikeroyal/Windows-11-Guide#table-of-contents)
**In Windows 11 Home and Pro editions Microsoft will require you to sign-in with Microsoft Account. Though, by following these simple steps below you can create a Local Account on the your Windows 11 device.**
Microsoft Account Sign-in on Windows 11
**Before we begin this process make sure to not connect your Wi-Fi or unplug your Ethernet cable if you use one.**
### Steps 1-5:
1. Press keys **Shift + F10** this will open the Windows Command prompt as System.
2. Then type **taskmgr** and Press Enter.
3. This opens up the **Task Manager**. Click the **more details** option in the bottom left corner.
4. Now scroll down til you see **Network Connection Flow**. Right click on the process and select **End task**.
5. You will now see on the Windows screen that you can sign-up for a Local account.
## Removing the Windows 11 Watermark
[Back to the Top](https://github.com/mikeroyal/Windows-11-Guide#table-of-contents)
The simplest way to do this is with Winarows Universal Water Mark Disabler which can be found at https://winaero.com/download-universal-watermark-disabler/
Thereâs also a manual a way to remove the Windows 11 watermark. Itâs important to know that removing the watermark does include editing some system registry files. So, do this at your own risk, and be careful.
- 1. Access the Registry Editor by typing **âRegeditâ** in the Windows 11 search box and hitting OK to open it.
- 2. On the left side, open up **HKEY_CURRENT_USER** and scroll down to the **Control Panel**.
- 3. Find the entry called **UnsupportedHardwareNotificationCache**.
- 4. **Right-click** that entry and select **âModifyâ** from the menu.
- 5. Change the **SV2 DWORD** value from 1 to **0**.
- 6. Save, exit, and then restart your PC.
## Optimizing Windows 11
[Back to the Top](#table-of-contents)
[](https://www.youtube.com/watch?v=mZm6mY3I7J4)
[](https://www.youtube.com/watch?v=6UQZ5oQg8XA)
[](https://www.youtube.com/watch?v=hdrsHMko17k)
[](https://www.youtube.com/watch?v=J4k6o-6PToQ)
[](https://www.youtube.com/watch?v=xLCWtC6UYrM)
[](https://www.youtube.com/watch?v=_gMJNQ3yWNE)
[BloatyNosy](https://github.com/builtbybel/BloatyNosy) is a tool that streamlines and houses all the essential settings under one app and allows you to disable and remove unnecessary features with just a simple click.
[Chris Titus Tech Windows Utility](https://github.com/ChrisTitusTech/winutil) is a tool that helps you install Programs, Tweaks, Fixes, and Updates. It makes Windows 11 setup easy and optimizes your machine. [The Ultimate Windows Utility | Chris Titus Tech YouTube.](https://www.youtube.com/watch?v=tPRv-ATUBe4)
The recommended way is to right click on the start menu and select (Windows Terminal As Admin Windows 11)
**Launch Command:**
```iwr -useb https://christitus.com/win | iex```
Or
```irm christitus.com/win | iex```
[Process Lasso](https://bitsum.com/) is a tool for real-Time CPU Optimization and Automation.
### Disable/Turnoff unwanted Apps on your Windows system
With Windows 11 a lot system resources such as CPU and Ram are taken up when your system starts up. There are serval ways turnoff/disable apps from auto-starting when you log-in to Windows 11
First way to stop auto-start apps is through Startup folder in the Windows settings.
Second way to stop auto-start apps is through Task Manager. Open task manager in the start menu.
### Turnoff VBS
**Virtualization Based Security (VBS)** can slow apps (and games) down by **5 to 15% in Windows 11** especially if you're on an **AMD system**.
* 1. **Open System Information**. Do this by searching for "system information" in Windows search and clicking the top result.
* 2. Scroll down to find the "Virtualization-based security" row. If it says "running," VBS is enabled. But if it says "not enabled," then you're done.
**Below are different are Two Ways you can disable VBS in Windows 11:**
**Disable VBS/HVCI in Windows 11**
* 1. Search for Core Isolation in Windows search and click the top result.
* 2. Toggle Memory Integrity to off, if it was on.
* 3. Reboot your PC as prompted.
* 4. Check **System Information** again to see if virtualization-based security is listed as "not enabled."
**Disable VBS By Uninstalling Virtual Machine**
If VBS is running, you can get rid of it by uninstalling the **"Virtual Machine"** feature in Windows. **Note:** that if this is the feature that's enabling VBS for you, losing it may cost you the ability to run **Windows Subsystem for Linux 2 (WSL2)**.
* 1. Open Turn Windows Features on or Off by searching for it.
* 2. Uncheck Virtual machine and click Ok.
* 3. Reboot your PC.
* 4. Check **System Information** again to make sure virtualization based security is listed as "not enabled."
## Ways to Customize Windows 11 Look and Feel
[Back to the Top](https://github.com/mikeroyal/Windows-11-Guide#table-of-contents)
[Chris Titus Tech Windows Utility](https://github.com/ChrisTitusTech/winutil) is the Ultimate Windows 10 & 11 script designed to be a swiss army knife of Windows tools to help setup and optimize machines. [The Ultimate Windows Utility | Chris Titus Tech YouTube.](https://www.youtube.com/watch?v=tPRv-ATUBe4)
**Paste this command into Powershell (admin):**
```iwr -useb https://christitus.com/win | iex```
[WingetUI](https://github.com/martinet101/WingetUI) is a GUI Store for the most common cli package managers, such as Winget and Scoop. It's developed by [MartĂ Climent AKA martinet101](https://github.com/martinet101).
[ViVe](https://github.com/thebookisclosed/ViVe) is a C# library you can use to make your own programs that interact with Windows 10/11's A/B feature mechanism.
[O&O ShutUp10++](https://www.oo-software.com/en/shutup10) is a free tool that let's you have full control over which comfort functions under **Windows 10 and Windows 11** you wish to use, and you decide when the passing on of your data goes too far.
[NTLite ($40)](https://www.ntlite.com/) is a local Windows configuration tool for updating and editing Windows images and deployments made for IT professionals and enthusiasts.
**Features:**
* Download Latest Windows Updates.
* Integrate/Install Updates and Languages.
* Integrate Drivers, Applications and REG files.
* Unattended Windows Setup, including Disk Partitioning.
* Hardware Driver Targeting.
* Windows Settings Configuration.
* Component Removal.
* Image, live (e.g. C:\Windows) and offline (e.g. D:\Windows, mounted VHD etc) editing *no capturing.
* Pending Changes Overview.
[WinPaletter](https://github.com/Abdelrhman-AK/WinPaletter) is a tool to colorize Windows 10/11 Accents without restrictions. It was created/developed by [Abdelrhman-AK](https://github.com/Abdelrhman-AK/).
[SecureUxTheme](https://github.com/namazso/SecureUxTheme) is a secure boot compatible in-memory UxTheme patcher.
[Files](https://github.com/files-community/Files) is a file manager for Windows with a powerful yet intuitive design. It has features like multiple tabs, panes, columns, shell extensions in the context menu and tags.
[EverythingToolbar](https://github.com/srwi/EverythingToolbar) is a tool that provides instant file search integration for the Windows taskbar powered by [Everything](https://www.voidtools.com/). It's compatible with both Windows 10 and Windows 11 and works well with tools like [ExplorerPatcher](https://github.com/valinet/ExplorerPatcher) and [StartAllBack](https://www.startallback.com/) to give you the full deskband integration even on Windows 11.
[Wintoys](https://apps.microsoft.com/store/detail/wintoys/9P8LTPGCBZXD?hl=en-us&gl=us) is a tool that improves your Windows experience in your way and keep it fresh every day. Set up, debloat, optimize, repair, and tweak your operating system in a simple, time-saving, yet safe approach. Maintain it in a clean, healthy and productive state while having everything you need in one place.
[Sysinternals Suite](https://docs.microsoft.com/en-us/sysinternals/downloads/sysinternals-suite) is the entire set of Sysinternals Utilities rolled up into a single download. Also, checkout the [Sysinternals Utilities Index](https://docs.microsoft.com/en-us/sysinternals/downloads/).
[ExplorerPatcher](https://github.com/valinet/ExplorerPatcher) is a tool that restores the taskbar, start menu, context menus, explorer, style and order back to the Windows 7 & 10 style.
[Directory Opus](https://www.gpsoft.com.au/) is a complete replacement for Explorer, with far more power and functionality than any other file manager available today. Image marking lets you sort your photos quickly and easily.
[ClickPaste](https://github.com/Collective-Software/ClickPaste) is a Windows 10/11 notification area appthat can paste clipboard contents as keystrokes to whatever location you click.
[StartAllBack](https://startallback.com/) ($4.99) is another tool that restores the taskbar, start menu, context menus, explorer, style and order back to the Windows 7 & 10 style.
[Start11](https://www.stardock.com/products/start11/) (ÂŁ5.99) is a tool designed to bring menus back from Windows 7/10 to Windows 11.
[ElevenClock](https://github.com/martinet101/ElevenClock) is a tool that provides a customizable clock on your Windows 11 multi-monitor displays. It's developed by [MartĂ Climent AKA martinet101](https://github.com/martinet101).
[Live Tiles Anywhere](https://www.reddit.com/r/windows/comments/q18fq7/live_tiles_anywhere_create_custom_live_tiles_for/) is a tool that brings a new way of thinking and using Windows Live Tiles, this is Live Tiles Anywhere. LTA is the first app that allows you to create not only working custom Live Tiles, but also add Live Tiles as widgets on your Desktop.
[RoundedTB](https://github.com/torchgm/RoundedTB) is a tool that adds margins, rounded corners and segments to your taskbars.
[Win11DisableOrRestoreRoundedCorners](https://github.com/valinet/Win11DisableRoundedCorners) is a tool that cold patches dwm (uDWM.dll) in order to disable window rounded corners in Windows 11.
[MSEdgeRedirect](https://github.com/rcmaehl/MSEdgeRedirect) is a tool that redirects News, Search, Widgets, Weather and more to Your Default Browser of choice in Windows 11.
[AltSnap](https://github.com/RamonUnch/AltSnap) is a maintained continuation of [Stefan Sundin's AltDrag](https://stefansundin.github.io/altdrag/). It allows you to move and resize windows by using the Alt key and clicking wherever on the window instead of relying on very precise clicking. This behavior is very common on Linux distributions and is not actually hard to implement on Windows.
[Twinkle Tray](https://twinkletray.com/) is a tool that lets you easily manage the brightness levels of multiple monitors. This app adds a new icon into your system tray, where you can click to have instant access to the brightness levels of all compatible monitors.
[Microsoft PowerToys](https://docs.microsoft.com/en-us/windows/powertoys/) is a set of utilities for power users to tune and streamline their Windows 10 experience for greater productivity. To get more information on [PowerToys](https://docs.microsoft.com/windows/powertoys/), or any other tools and resources for [Windows development environments](https://docs.microsoft.com/windows/dev-environment/overview), go to [docs.microsoft.com](https://docs.microsoft.com/windows/powertoys/).
[WPF UI](https://github.com/lepoco/wpfui) is a tool that prvides a simple way to make your application written in WPF keep up with modern design trends. Library changes the base elements like Page, ToggleButton or List, and also includes additional controls like Navigation, NumberBox, Dialog or Snackbar.
[Windows 11 Drag & Drop to the Taskbar (Fix)](https://github.com/HerMajestyDrMona/Windows11DragAndDropToTaskbarFix) is a program that fixes the missing "Drag & Drop to the Taskbar" support in Windows 11. It works with the new Windows 11 taskbar and does not require nasty changes like UndockingDisabled or restoration of the classic taskbar.
[ConfigureDefender](https://github.com/AndyFul/ConfigureDefender) is a small utility for configuring Windows 10/11 (and Windows Server) built-in Defender Anti-Virus settings. It is a part of Hard_Configurator project (including source files), but it can be used as a standalone application (portable).
[TweakUIX](https://github.com/builtbybel/TweakUIX) is a PowerToys/Tweak UI Replica created by [Builtbybel](https://twitter.com/builtbybel).
[Winaero Tweaker](https://winaero.com/winaero-tweaker/) is an all-in-one application that comes with dozens of options for fine-grained tuning of various Windows settings and features.
[QTTab Bar](https://indiff.github.io/qttabbar/) is a simple utility that will enable you to operate files and folders like tab browser folder grouping, and histories for Windows Explorer in Windows 10/11.
[Ear Trumpet](https://eartrumpet.app/) is a powerful volume control app for Windows 10/11 providing a system tray utility that gives you volume levels for every app and the ability to set custom inputs and outputs for those apps.
[Wallpaper Engine](https://store.steampowered.com/app/431960/Wallpaper_Engine/) (ÂŁ2.99) is a tool enables you to use live wallpapers on your Windows desktop. Various types of animated wallpapers are supported, including 3D and 2D animations, websites, videos and even certain applications.
[Lively Wallpaper](https://rocksdanister.github.io/lively/) is a Windows application designed to turn GIFs, games, and videos into animated wallpapers.
**"God Mode"** is a folder that shows all things in Control Panel in one folder. To add this
* 1.) Make sure you system account has administrative privilages.
* 2.) Right-click on the Windows 10 desktop and choose New > Folder.
* 3.) Name the folder: GodMode.{ED7BA470-8E54-465E-825C-99712043E01C} and hit enter/return.
## Installing drivers for
[Back to the Top](#table-of-contents)
### General Drivers
[Back to the Top](#table-of-contents)
[Snappy Driver Installer(SDI) Origin](https://www.snappy-driver-installer.org) is a portable Windows tool to install and update device drivers. It can be used offline to install drivers where Internet isn't available. No more searching for drivers after a clean install of Windows 10/11.
Snappy Driver Installer(SDI) Origin
[Download Display Driver Uninstaller(DDU)](https://www.guru3d.com/files-details/display-driver-uninstaller-download.html) is a driver removal utility that can help you completely uninstall AMD/NVIDIA graphics card drivers and packages from your system, without leaving leftovers behind (including registry keys, folders and files, driver store).
**Recommended usage:**
* The tool can be used in Normal mode but for absolute stability when using DDU, Safemode is always the best.
* Make a backup or a system restore (but it should normally be pretty safe).
* It is best to exclude the DDU folder completely from any security software to avoid issues.
Download Display Driver Uninstaller(DDU)
## Microsoft Office Alternatives
[Back to the Top](https://github.com/mikeroyal/Windows-11-Guide#table-of-contents)
[OnlyOffice](https://www.onlyoffice.com/) is a secure offline/online office suite highly compatible with MS Office formats for Windows, Mac and Linux.
OnlyOffice
[FreeOffice](https://www.freeoffice.com/) is a secure office suite highly compatible with MS Office formats for Windows, Mac and Linux.
FreeOffice
[LibreOffice](https://www.libreoffice.org/) is a free and open-source office productivity software suite similar to Microsoft Office.
LibreOffice
### Replacing OneDrive with Nextcloud
[Back to the Top](#table-of-contents)
**Replacing these OneDrive services:**
* File sync (âMicrosoft OneDriveâ) -> [Nextcloud Files](https://nextcloud.com/files/)
* Photos (âiCloud Photo Libraryâ) -> [Nextcloud Photos](https://github.com/nextcloud/photos)
* Mail -> [Nextcloud Mail](https://apps.nextcloud.com/apps/mail) + [SnappyMail](https://apps.nextcloud.com/apps/snappymail)
* Contacts -> [Nextcloud Contacts](https://apps.nextcloud.com/apps/contacts)
* Calendar -> [Nextcloud Calendar](https://apps.nextcloud.com/apps/calendar)
* Reminders -> [SnappyMail](https://apps.nextcloud.com/apps/snappymail)
* Browser sync -> [Nextcloud Bookmarks](https://apps.nextcloud.com/apps/bookmarks) or [Floccus](https://floccus.org/)
* Notes -> [Nextcloud Notes](https://apps.nextcloud.com/apps/notes)
* Password sync (âKeychainâ) -> [KeePass DB on Nextcloud](https://apps.nextcloud.com/apps/keeweb)
* Remote access (âBack to my macâ) -> [Tailscale](https://tailscale.com/) + [docker-ddns](https://github.com/dprandzioch/docker-ddns)
* Office for OneDrive -> [Nextcloud with Onlyoffice](https://nextcloud.com/onlyoffice/) or [Collabora Online in Nextcloud](https://nextcloud.com/collaboraonline/)
* News -> [Miniflux](https://miniflux.app/) with [Fever API](https://miniflux.app/docs/services.html)
* Audiobooks -> [audiobookshelf](https://www.audiobookshelf.org/)
* Repository Hosting -> [GitLab](https://gitlab.com/)
[Nextcloud](https://nextcloud.com) is an industry-leading, on-premises content collaboration platform for file sync & share and communication server. It is fully open source and you can host it yourself or pay a company to do it for you. Also checkout the following links below:
- [Nextcloud App Store](https://apps.nextcloud.com)
- [Nextcloud GitHub](https://github.com/nextcloud)
- [Nextcloud Developer Program](https://nextcloud.com/developer)
Nexcloud login screen
[Nextcloud Hub](https://nextcloud.com/hub/) is a tool that allows you to share and collaborate on documents, send and receive email, manage your calendar and have video chats without data leaks. As fully on-premises solution, Nextcloud Hub provides the benefits of online collaboration without the compliance and security risks.
Nexcloud Hub
[Nextcloud AIO (All In One)](https://github.com/nextcloud/all-in-one) is a tool that provides easy deployment and maintenance with most features included in this one Nextcloud instance.
**Features it includes:**
* Nextcloud
* Nextcloud Office
* High performance backend for Nextcloud Files
* High performance backend for Nextcloud Talk
* Backup solution (based on BorgBackup)
* Imaginary
* ClamAV
* Fulltextsearch
[Nextcloud Desktop Client](https://nextcloud.com/install/#install-clients) is a tool to synchronize files from Nextcloud Server with your computer.
[Nextcloud Deck](https://apps.nextcloud.com/apps/deck) is a kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud.
[Nextcloud Files](https://nextcloud.com/files/) is a tool tool that allows your employees have easy access to their files, photos and documents to work and can share and collaborate with team members, customers and partners. So IT knows nobody besides those they shared with has access to those files.
[Nextcloud Talk](https://nextcloud.com/talk/) is a tool that protects your communication better than other team collaboration platforms like Microsoft Teams or Slack, making sure your data stays on your servers. It also goes further than other encrypted communication technologies by keeping even metadata from leaking.
[Nextcloud Home](https://nextcloud.com/athome/) is a tool that allows you store your documents, calendar, contacts and photos on your server at home, at one of at one Nextcloud's providers or in a data center you trust.
[Nextcloud Enterprise](https://nextcloud.com/enterprise/) is a service that gives professional organizations software optimized and tested for mission critical environments.
[Nextcloud Outlook Integration](https://nextcloud.com/outlook/) is a tool that automatically upload files to replace large attachments or integrate Calendars and Contacts in Microsoft Outlook.
[Collabora Online in Nextcloud](https://nextcloud.com/collaboraonline/) is a powerful LibreOffice-based online office suite with collaborative editing, which supports all major document, spreadsheet and presentation file formats and works in all modern browsers.
[ONLYOFFICE integration in Nextcloud](https://nextcloud.com/onlyoffice/) is a service that empowers your users to collaborate on office documents with team members in real time. It has compatibility with Microsoft Office formats means perfect documents, every time.
[Nextcloud VM(virtual machine appliance)](https://download.nextcloudvm.com/) is a set of carefully crafted family of [*nix](https://bit.ly/2UaCC7b) scripts, which interactively guide you through a quality-controlled installation of a Nextcloud instance for Home/SME Server and scripts for Raspberry Pi 4. It is Community developed and maintained.
## Secure & Privacy Focused Web Browsers
[Back to the Top](https://github.com/mikeroyal/Windows-11-Guide#table-of-contents)
[Mozilla Firefox](https://www.mozilla.org/firefox/) is a free and open-source web browser developed by the Mozilla Foundation.
Firefox
[LibreWolf](https://librewolf.net/) is an open-source web browser designed to increase protection against tracking and fingerprinting techniques, while also including a few security improvements. It removes all the telemetry, data collection and annoyances, as well as disabling anti-freedom features like DRM.
LibreWolf
[Brave](https://brave.com/) is a fast, private and secure web browser for PC, Mac and mobile. It comes with [Brave Search](https://brave.com/search/), which is a private search engine that puts you first, not big tech for those that don't want to use Google Search.
Brave
[Ungoogled-Chromium](https://github.com/ungoogled-software/ungoogled-chromium) is a lightweight approach to removing Google web service dependency.
Ungoogled-Chromium
[Vivaldi](https://vivaldi.com/) is a fast, private and secure web browser for PC, Mac and mobile. It comes with built-in features like Notes, Screen Capture, Image Properties and (a lot) more.
Vivaldi
[Ghostery Dawn](https://www.ghostery.com/dawn) is a fast, private and secure web browser for PC, Mac and mobile. It comes with the complete Ghostery Privacy Suite including [Ghostery Glow](https://www.ghostery.com/glow) a private search engine that does not log your search history, which means you get served objective results, not results that are filtered by the likelihood youâll click on them.
Ghostery Dawn
### Privacy & Security Focused Browser extensions
[Back to the Top](#table-of-contents)
[UBlock Origin](https://ublockorigin.com/) is a free and open-source, cross-platform browser extension for content filtering primarily aimed at neutralizing privacy invasion in an efficient, user-friendly method.
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/)
* [Chrome extension](https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm)
[Privacy Badger](https://privacybadger.org/) is a browser extension that automatically learns to block invisible trackers.
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/privacy-badger17/)
* [Chrome extension](https://chrome.google.com/webstore/detail/privacy-badger/pkehgijcmpdhfbdbbnkijodmdjhbjlgp)
[DuckDuckGo Privacy Essentials](https://duckduckgo.com/app) is an extension that seamlessly helps prevent your personal information from being exposed during everyday online activity.
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/duckduckgo-for-firefox/)
* [Chrome extension](https://chrome.google.com/webstore/detail/duckduckgo-privacy-essent/bkdgflcldnnnapblkhphbgpggdiikppg?hl=fr)
[Ghostery](https://www.ghostery.com/ghostery-browser-extension) is a comprehensive privacy protection Ad Blocker browser extension.
* [Firefox extension](https://www.ghostery.com/ghostery-ad-blocker-firefox)
* [Chrome extension](https://www.ghostery.com/ghostery-ad-blocker-chrome)
[HTTPS Everywhere](https://www.eff.org/https-everywhere) is an extension created by EFF and the Tor Project which automatically switches thousands of sites from insecure "http" to secure "https".
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/https-everywhere/)
* [Chrome extension](https://chrome.google.com/webstore/detail/https-everywhere/gcbommkclmclpchllfjekcdonpmejbdp?hl=en)
[CleanURLs](https://gitlab.com/KevinRoebert/ClearUrls) is an extension will automatically remove tracking elements from URLs to help protect your privacy when browsing through the Internet.
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/clearurls/)
* [Chrome extension](https://chrome.google.com/webstore/detail/clearurls/lckanjgmijmafbedllaakclkaicjfmnk/)
**PixelBlock** is an Gmail extension that blocks email tracking attempts used to detect when you open and read emails.
* [Chrome extension](https://chrome.google.com/webstore/detail/pixelblock/jmpmfcjnflbcoidlgapblgpgbilinlem/)
[Sitejabber](https://www.sitejabber.com/) is an extension for consumers to find trustworthy online businesses and avoid scams.
[Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/sitejabber/)
[Chrome extension](https://chrome.google.com/webstore/detail/sitejabber-ratings-review/ckiddbafgcfifpioacgfijgicacanflo)
[1Password](https://1password.com/) is a password manager that provides a place for users to store various passwords, software licenses, and other sensitive information in a virtual vault that is locked with a PBKDF2-guarded master password.
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/1password-x-password-manager/)
* [Chrome extension](https://chrome.google.com/webstore/detail/1password-%E2%80%93-password-mana/aeblfdkhhhdcdjpifhhbdiojplfjncoa?hl=en)
[Bitwarden](https://bitwarden.com/) is a free and open-source password management service that stores sensitive information such as website credentials in an encrypted vault.
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/bitwarden-password-manager/)
* [Chrome extension](https://chrome.google.com/webstore/detail/bitwarden-free-password-m/nngceckbapebfimnlniiiahkandclblb)
[Guardio](https://guard.io/) is a lightweight extension designed to help you browse quickly and securely. It will clean your browser, speed it up, and protect your private information.
* [Chrome extension](https://chrome.google.com/webstore/detail/guardio-protection-for-ch/gjfpmkejnolcfklaaddjnckanhhgegla)
[OneTab](https://www.one-tab.com/) is an extension that converts your tabs to a list and speeds up your browser.
* [Firefox extension](https://addons.mozilla.org/en-US/firefox/addon/onetab/)
* [Chrome extension](https://chrome.google.com/webstore/detail/onetab/chphlpgkkbolifaimnlloiipkdnihall)
### Privacy-focused Search Engines
[Back to the Top](#table-of-contents)
* [Brave Search](https://brave.com/search/)
* [Ghostery Glow](https://www.ghostery.com/glow)
* [DuckDuckGo](https://duckduckgo.com/)
* [Startpage](https://www.startpage.com/)
* [Qwant](https://www.qwant.com/)
* [Ecosia](https://www.ecosia.org/)
* [Swisscows](https://swisscows.com/)
* [searX](https://searx.info/)
* [Mojeek](https://www.mojeek.com/)
## Systems Management
[Back to the Top](#table-of-contents)
**Systems management** is a range of tasks, ranging across infrastructures, operating systems and applications.
* [System Management Components overview - Windows Server](https://learn.microsoft.com/troubleshoot/windows-server/system-management-components/system-management-components-overview)
* [Azure Active Directory is Becoming Microsoft Entra ID | Microsoft Azure](https://azure.microsoft.com/products/active-directory/)
* [Microsoft Entra - Secure Identities and Access | Microsoft Security](https://www.microsoft.com/security/business/microsoft-entra)
* [Active Directory Domain Services | Microsoft Learn](https://learn.microsoft.com/windows-server/identity/ad-ds/active-directory-domain-services)
* [Microsoft 365 Products, Apps, and Services | Microsoft 365](https://www.microsoft.com/microsoft-365/products-apps-services)
* [Systems management 101: An ultimate guide](https://zapier.com/blog/systems-management/)
* **[Active Directory](https://learn.microsoft.com/windows-server/identity/ad-ds/get-started/virtual-dc/active-directory-domain-services-overview)** is a directory service developed by Microsoft for Windows domain networks. It is included in most Windows Server operating systems as a set of processes and services.
* **[Microsoft 365](https://www.microsoft.com/microsoft-365)** is a subscription that includes the most collaborative, up-to-date features in one seamless, integrated experience. It includes productivity tools such as Microsoft Word, Excel, PowerPoint, Microsoft Teams, Outlook, OneDrive, and more all in one place.
* **[Microsoft Entra ID (formerly Azure Active Directory)](https://learn.microsoft.com/entra/)** is a service that manages user identities and control access to your apps, data, and resources. It protects, monitors, and audits access to critical assets in your organization.
* [Activepieces](https://www.activepieces.com) is a No-code business automation tool like Zapier or Tray. For example, you can send a Slack notification for each new Trello card.
* [ActiveWorkflow](https://github.com/automaticmode/active_workflow) is an intelligent process and workflow automation platform based on software agents.
* [AdvancedRun](https://www.nirsoft.net/utils/advanced_run.html) is a simple tool for Windows that allows you to run a program with different settings that you choose, including - low or high priority, start directory, main window state (Minimized/Maximized), run the program with different user or permissions, Operating system compatibility settings, and environment variables. You can also save the desired settings into a configuration file and then run the program automatically from command-line with the desired settings.
* [AllThreadsView](https://www.nirsoft.net/utils/all_threads_view.html) is a simple tool for Windows that displays a list of all running threads from all processes on your system in one table. For every thread, the following information is displayed: Thread ID, Creation Time, Kernel Time, User Time, Duration, Start Address, Priority, Base Priority, Context Switch Count, Context Switch Change (Since the last refresh), Wait Reason, Process ID, Process Path.
* [Automatisch](https://automatisch.io) is a Business automation tool that lets you connect different services like Twitter, Slack, and more to automate your business processes (Open source Zapier alternative).
* [Baserow](https://baserow.io/) is an Open source online database tool and Airtable alternative. Create your own database without technical experience.
* [BlueScreenView](https://www.nirsoft.net/utils/blue_screen_view.html) is a tool that scans all your minidump files created during **'blue screen of death'** crashes, and displays the information about all crashes in one table. For each crash, BlueScreenView displays the minidump filename, the date/time of the crash, the basic crash information displayed in the blue screen (Bug Check Code and 4 parameters), and the details of the driver or module that possibly caused the crash (filename, product name, file description, and file version).
* [BulkFileChanger](https://www.nirsoft.net/utils/bulk_file_changer.html) is a small utility that allows you to create files list from multiple folders, and then make some action on them - Modify their created/modified/accessed time, change their file attribute (Read Only, Hidden, System), run an executable with these files as parameter, and copy/cut paste into Explorer.
* [ChiefOnboarding](https://chiefonboarding.com) is a Employee onboarding platform that allows you to provision user accounts and create sequences with todo items, resources, text/email/Slack messages, and more! Available as a web portal and Slack bot.
* [Datasette](https://datasette.io/) is an open source multi-tool for exploring and publishing data, easy import and export and database management.
* [DNSLookupView](https://www.nirsoft.net/utils/dns_lookup_view.html) is a DNS tracing tool for Windows 10 that allows you to view the details of every DNS query sent through the DNS Client service of Windows. For every DNS query, the following information is displayed: Host Name, Query Type (A, AAAA, and so on), Query Status (Error or succeeded), Query Result, Query Timestamp, ID and name of the process that requested the DNS lookup.
* [DriveLetterView](https://www.nirsoft.net/utils/drive_letter_view.html) is a simple utility that allows you to view the list of all drive letter assignments in your system, including local drives, remote network drives, CD/DVD drives, and USB drives - even if they are not currently plugged. It also allows you to easily change a drive letter of USB devices and remote network shares, as well as to delete a drive letter of USB device that is not plugged.
* [Eonza](https://www.eonza.org) is a tool used to create scripts and automate tasks on servers or VPS hosting. Manage your servers from any browser on any device.
* [Fleek](https://getfleek.dev/) is an all-in-one management system for everything you need to be productive on your computer.
* [Patrowl](https://github.com/Patrowl/PatrowlManager) is an Open Source, Smart and Scalable Security Operations Orchestration Platform.
* [ManageWirelessNetworks](https://www.nirsoft.net/utils/manage_wireless_networks.html) is an alternative tool to the standard 'Manage Wireless Networks' of Windows (or 'Manage Known Networks' on Windows). It displays extensive information about every wireless profile on your system, even if the network adapter is not active. For every wireless profile, the following information is displayed: Profile Name, SSID, Connection Type, Connection Mode, Authentication, Encryption, Key Type, Auto Switch (Yes/No), Non Broadcast (Yes/No), Profile Position, Created Time, Modified Time, Wireless Key, and more.
* [NetworkInterfacesView](https://www.nirsoft.net/utils/network_interfaces.html) is a simple tool that displays the list of all network adapters/interfaces installed on your system. It displays network interfaces that are currently active, as well as network interfaces that have been installed previously, and now they are not connected (like USB wireless network adapters). For every network interface found on your system, the following information is displayed (if it's stored in the Registry): Device Name, Connection Name, IP Address, Subnet Mask, Default Gateway, DHCP Server, Status, MAC Address and more.
* [PingInfoView](https://www.nirsoft.net/utils/multiple_ping_tool.html) is a small utility that allows you to easily ping multiple host names and IP addresses, and watch the result in one table. It automatically ping to all hosts every number of seconds that you specify, and displays the number of succeed and failed pings, as well as the average ping time. You can also save the ping result into text/html/xml file, or copy it to the clipboard.
* [Policy Plus](https://github.com/Fleex255/PolicyPlus) is a tool for Local Group Policy Editor plus more, for all Windows editions.
**Features:**
* Run and work on all Windows editions, not just Pro and Enterprise.
* Comply fully with licensing (i.e. transplant no components across Windows installations).
* View and edit Registry-based policies in local GPOs, per-user GPOs, individual POL files, offline Registry user hives, and the live Registry.
* Navigate to policies by ID, text, or affected Registry entries.
* Show additional technical information about objects (policies, categories, products).
* Provide convenient ways to share and import policy settings.
* [Product Key Scanner](https://www.nirsoft.net/utils/product_key_scanner.html) is a tool that scans the Registry of Windows Operating system and finds the product keys of Windows and other Microsoft products. You can scan the Registry of your current running system, as well as you can scan the Registry from external hard drive plugged to your computer.
* [Salt](https://www.saltstack.com/) - is an event-driven automation tool and framework to deploy, configure, and manage complex IT systems. It automates common infrastructure administration tasks and ensure that all the components of your infrastructure are operating in a consistent desired state.
* [StackStorm](https://stackstorm.com) is an event-driven automation for auto-remediation, security responses, troubleshooting, deployments, and more. Includes rules engine, workflow, 160 integration packs with 6000+ actions and ChatOps.
* [WhoisThisDomain](https://www.nirsoft.net/utils/whois_this_domain.html) is a utility allows you to easily get information about a registered domain. It automatically connects to the right WHOIS server, according to the top-level domain name, and retrieve the WHOIS record of the domain. It supports both generic domains and country code domains.
* [WinDefThreatsView](https://www.nirsoft.net/utils/windows_defender_threats_view.html) is tool for Windows 11 that displays the list of all threats detected by Windows Defender Antivirus and allows you to easily set the default action (Allow, Quarantine, Clean, Remove, Block, or No Action) for multiple threats at once. You can use this tool on your local computer and also on remote computer, as long as you have permission to access WMI on the remote machine.
* [WinUpdatesView](https://www.nirsoft.net/utils/windows_updates_history_viewer.html) is a simple tool that displays the history of Windows updates on your system. WinUpdatesView can load the Windows updates history from your local system, using API, and it can also read and parse the Windows updates database file (DataStore.edb) from external drive or from remote computer on your network. For every Windows update history record, WinUpdatesView displays the following fields: Title, Description, Install Date, Update Operation (Install, Uninstall, Not Started, In Progress), Operation Result (Succeeded, Succeeded With Errors, Failed, Aborted), Category, Information URL, Support URL, Uninstall Notes, Client Application ID, Service ID, Update ID, Revision Number, Unmapped Result Code, Server Selection, hResult.
### Setting up Active Directory
[Back to the Top](#table-of-contents)
Active Directory
* **[Active Directory](https://learn.microsoft.com/windows-server/identity/ad-ds/get-started/virtual-dc/active-directory-domain-services-overview)** is a directory service developed by Microsoft for Windows domain networks. It is included in most Windows Server operating systems as a set of processes and services.
* **[Microsoft 365](https://www.microsoft.com/microsoft-365)** is a subscription that includes the most collaborative, up-to-date features in one seamless, integrated experience. It includes productivity tools such as Microsoft Word, Excel, PowerPoint, Microsoft Teams, Outlook, OneDrive, and more all in one place.
* **[Microsoft Entra ID (formerly Azure Active Directory)](https://learn.microsoft.com/entra/)** is a service that manages user identities and control access to your apps, data, and resources. It protects, monitors, and audits access to critical assets in your organization.
* **[Active Directory Federation Services (AD FS)](https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/ad-fs-overview)** allows you can employ single sign-on to external systems such as applications and websites. One typical example of the use of AD FS is Office 365. When a user signs in to Office 365, the user ID and password are redirected via the federation server to check whether the entered credentials are authentic against your On-prem AD. This is how it provides authentication to external systems through the local Active Directory.
* **[Active Directory Lightweight Directory Services (AD LDS)](https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/hh831593(v=ws.11))** is a service that offers directory services with the help of LDAP protocol without having to deploy any DCs. The service is used to provide directory service functionally to directory-enabled applications.
* **[Active Directory Rights Management Services (AD RMS)](https://learn.microsoft.com/en-us/azure/information-protection/how-does-it-work)** is a service allows you to protect information within digital content. It secures the documents by defining which users can modify, open, view, print, forward, or take similar documents.
**Hierarchical Structure of Active Directory Domain Services**
* **[Tree](https://learn.microsoft.com/en-us/azure/azure-monitor/visualize/workbooks-tree-visualizations)** is formed by grouping one or more domains in a logical hierarchy. All domains within a tree are logically linked; hence they âtrustâ each other.
* **[Forest](https://learn.microsoft.com/en-us/azure/architecture/reference-architectures/identity/adds-forest)** is a topmost level in the Active Directory of your organization. It contains one or more trees grouped. Trees within a forest are also said to âtrustâ each other and share catalogs, directory schemas, domain configurations, and application data.
* **[Organizations Units (OU)](https://learn.microsoft.com/en-us/azure/active-directory-domain-services/create-ou)** are used to organize groups, users, computers, and other entities.
* **[Containers](https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/plan/delegating-administration-of-default-containers-and-ous)**: is a tool similar to an OU; with the only difference is that you cannot link a GPO (Group Policy Object) to a generic container within AD.
### Active Directory Best Practices Security Resources
- [Microsoft - Best Practices for Securing Active Directory](https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/best-practices-for-securing-active-directory)
- [Microsoft - Best practices for securing Active Directory Federation Services](https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/deployment/best-practices-securing-ad-fs)
- [ANSSI CERT-FR - Active Directory Security Assessment Checklist](https://www.cert.ssi.gouv.fr/uploads/guide-ad.html) - [other version with changelog](https://www.cert.ssi.gouv.fr/uploads/ad_checklist.html) - 2022 (English and French versions)
- [Microsoft - Windows security baselines](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-security-baselines)
- [Microsoft - Windows Server Security | Assurance](https://docs.microsoft.com/en-us/windows-server/security/security-and-assurance)
- [Microsoft - Windows 10 Enterprise Security](https://docs.microsoft.com/en-us/windows/security/)
- [ACSC - Securing PowerShell in the Enterprise](https://www.cyber.gov.au/publications/securing-powershell-in-the-enterprise)
- [Awesome Windows Domain Hardening](https://github.com/PaulSec/awesome-windows-domain-hardening)
- [Microsoft - How to detect, enable and disable SMBv1, SMBv2, and SMBv3 in Windows and Windows Server](https://support.microsoft.com/en-gb/help/2696547/detect-enable-disable-smbv1-smbv2-smbv3-in-windows-and-windows-server)
- [Microsoft recommended block rules](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules) - List of applications or files that can be used by an attacker to circumvent application whitelisting policies.
- [ERNW - IPv6 Hardening Guide for Windows Servers](https://www.ernw.de/download/ERNW_Guide_to_Configure_Securely_Windows_Servers_For_IPv6_v1_0.pdf)
- [NSA - AppLocker Guidance](https://github.com/nsacyber/AppLocker-Guidance) - Configuration guidance for implementing application whitelisting with AppLocker.
- [NSA - BitLocker Guidance](https://github.com/nsacyber/BitLocker-Guidance) - Configuration guidance for implementing disk encryption with BitLocker.
- [NSA - Event Forwarding Guidance](https://github.com/nsacyber/Event-Forwarding-Guidance) - Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding.
- [Windows Defense in Depth Strategies](https://docs.google.com/document/d/1_43UroB0zY4-R2E2r_nH4ndYpDmXAY8g0oTp8yWlwBk/edit?usp=sharing) - work in progress.
**Initial Setup Process**
Active Directory Lifecycle
## Windows Security Hardening
[Back to the Top](#table-of-contents)
* [Personal Security Checklist](https://github.com/Lissy93/personal-security-checklist) is a curated checklist of 300+ tips for protecting digital security and privacy in 2022.
* [Awesome Privacy](https://github.com/Lissy93/awesome-privacy) is acurated list of privacy & security-focused software and services.
* [Cover Your Tracks AKA Panopticlick](https://coveryourtracks.eff.org/) is a web tool developed by the Electronic Frontier Foundation (EFF) that tests your browser to see how well you are protected from tracking and fingerprinting.
[Sysinternals Suite](https://docs.microsoft.com/en-us/sysinternals/downloads/sysinternals-suite) is the entire set of Sysinternals Utilities rolled up into a single download. Also, checkout the [Sysinternals Utilities Index](https://docs.microsoft.com/en-us/sysinternals/downloads/).
[Microsoft Security Compliance Toolkit (SCT) 1.0](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-security-configuration-framework/security-compliance-toolkit-10) is a set of tools that allows enterprise security administrators to download, analyze, test, edit, and store Microsoft-recommended security configuration baselines for Windows and other Microsoft products. Also checkout [Microsoft Security Baselines](https://techcommunity.microsoft.com/t5/microsoft-security-baselines/new-amp-updated-security-tools/ba-p/1631613).
- [Microsoft recommended block rules](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules)
- [Windows Server Security documentation](https://docs.microsoft.com/en-us/windows-server/security/security-and-assurance)
[PingCastle](https://www.pingcastle.com/) is a tool to check the security of [Active Directory](https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/get-started/virtual-dc/active-directory-domain-services-overview).
[ConfigureDefender](https://github.com/AndyFul/ConfigureDefender) is a small GUI application to view and configure important Defender settings on Windows 10/11 and Windows Server 2019 or later. It uses [PowerShell cmdlets](https://docs.microsoft.com/en-us/powershell/scripting/developer/cmdlet/cmdlet-overview) (with a few exceptions) to change the Windows Defender settings.
[RKill](https://www.bleepingcomputer.com/download/rkill/) is a program that was developed at BleepingComputer.com that attempts to terminate known malware processes so that your normal security software can then run and clean your computer of infections. When RKill runs it will kill malware processes and then removes incorrect executable associations and fixes policies that stop us from using certain tools.
[Hardentools](https://github.com/securitywithoutborders/hardentools) is designed to disable a number of "features" exposed by operating systems (Microsoft Windows, for now) and some widely used applications (Microsoft Office and Adobe PDF Reader, for now). These features, commonly thought for enterprise customers, are generally useless to regular users and rather pose as dangers as they are very commonly abused by attackers to execute malicious code on a victim's computer.
Hardentools UI
[Chris Titus Tech Windows Utility](https://github.com/ChrisTitusTech/winutil) is the Ultimate Windows 10 & 11 script designed to be a swiss army knife of Windows tools to help setup and optimize machines. [The Ultimate Windows Utility | Chris Titus Tech YouTube.](https://www.youtube.com/watch?v=tPRv-ATUBe4)
**Paste this command into Powershell (admin):**
```iwr -useb https://christitus.com/win | iex```
[O&O ShutUp10++](https://www.oo-software.com/en/shutup10) is a free tool that let's you have full control over which comfort functions under **Windows 10 and Windows 11** you wish to use, and you decide when the passing on of your data goes too far.
### Encryption Tools
[Back to the Top](#table-of-contents)
[BitLocker Drive Encryption](https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-overview) is a data protection feature that integrates with the Windows operating system and addresses the threats of data theft or exposure from lost, stolen, or inappropriately decommissioned computers. BitLocker provides the most protection when used with a Trusted Platform Module (TPM) version 1.2 or later.
[Folder Lock](https://www.newsoftwares.net/folderlock/) is an encryption tool that can Lock and Hide files and folders within seconds. It enables you to Password Protect and restricts the unwanted eyes from viewing files, folders and drives.
[VeraCrypt](https://www.veracrypt.fr/code/VeraCrypt/) is free open-source disk encryption software for Windows, Mac OS X and Linux. The file encryption, data encryption performed by VeraCrypt is real-time (on-the-fly), automatic, transparent, needs very little memory, and does not involve temporary unencrypted files.
### VPN
[Back to The Top](#table-of-contents)
[Wireguard](https://www.wireguard.com/) - New minimal VPN Solution that is very fast.
[Tailscale](https://tailscale.com/) is the easiest, most secure way to use WireGuard and 2FA. Tailscale helps you manage and access private or shared resources from anywhere in the world.
[Tailscale Chocolatey Package](https://github.com/tailscale/tailscale-chocolatey) is a [Chocolatey](https://chocolatey.org/) package of the [Tailscale](https://tailscale.com/) client, the private networking solution.
[Terraform-provider-Tailscale](https://github.com/tailscale/terraform-provider-tailscale) is a project for for the [Tailscale Terraform provider](https://registry.terraform.io/providers/tailscale/tailscale). This Terraform provider that lets you interact with the [Tailscale](https://tailscale.com/) API.
[Wg Server for Windows (WS4W)](https://github.com/micahmo/WgServerforWindows) is a desktop application that allows running and managing a WireGuard server endpoint on Windows.
[Firezone](https://firezone.dev/) is a self-hosted WireGuardÂŽ-based VPN server and Linux firewall.
[NetBird](https://netbird.io/) is an open-source VPN management platform built on top of WireGuardÂŽ making it easy to create secure private networks for your organization or home.
[SoftEther](https://www.softether.org/) - Multi-protocol software VPN with advanced features.
[OpenVPN](https://community.openvpn.net) - Uses a custom security protocol that utilizes SSL/TLS for key exchange.
[Pritunl](https://pritunl.com/) - OpenVPN based solution that's easy to set up.
[sshuttle](https://github.com/apenwarr/sshuttle) - Poor man's VPN.
[strongSwan](https://www.strongswan.org/) - Complete IPsec implementation for Linux.
[tinc](https://www.tinc-vpn.org/) - Distributed p2p VPN.
### SSH
[Back to The Top](#table-of-contents)
[Tailscale SSH](https://tailscale.com/kb/1193/tailscale-ssh/) is a service that allows Tailscale to manage the authentication and authorization of SSH connections on your tailnet.
[SSHrc](https://github.com/Russell91/sshrc) - sources ~/.sshrc on your local computer after logging in remotely.
[StormSSH](https://stormssh.readthedocs.org) - A command line tool to manage SSH connections.
[Advanced SSH config](https://pypi.python.org/pypi/advanced-ssh-config/) - Enhances ssh_config file capabilities, completely transparent.
[AutoSSH](https://www.harding.motd.ca/autossh/) - Automatically respawn ssh session after network interruption.
[Cluster SSH](https://sourceforge.net/projects/clusterssh/) - Controls a number of xterm windows via a single graphical console.
[DSH](https://www.netfort.gr.jp/~dancer/software/dsh.html.en) - Dancer's shell / distributed shell - Wrapper for executing multiple remote shell commands from one command line.
[Mosh](https://mosh.org/) - is a command-line program, like SSH. You can use it inside xterm, gnome-terminal, urxvt, Terminal.app, iTerm, emacs, screen, or tmux.
[Parallel SSH](https://parallel-ssh.org/) is an asynchronous parallel SSH library designed for large scale automation. It differentiates ifself from alternatives, other libraries and higher level frameworks like Ansible or Chef.
### Firewall Filtering
[Back to The Top](#table-of-contents)
**Firewall** is a system that provides network security by filtering incoming and outgoing network traffic based on a set of user-defined rules. In general, the purpose of a firewall is to reduce or eliminate the occurrence of unwanted network communications while allowing all legitimate communication to flow freely.
[GlassWire](https://www.glasswire.com/) is a personal Network Traffic Monitor and Firewall. It instantly see your current & past network activity. Detecting malware, and block badly behaving apps.
[Simplewall](https://www.henrypp.org/product/simplewall) is a simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer. It's not a control UI over Windows Firewall, and does not interact in any level with Windows Firewall. It works over Windows Filtering Platform (WFP) which is a set of API and system services that provide a platform for creating network filtering applications.
### Network Packet Filtering with eBPF
[Back to the Top](#table-of-contents)
* **Packet filtering** is the process of passing or blocking data packets at a network interface by a firewall based on source and destination addresses, ports or protocols.
[](https://www.youtube.com/watch?v=CEl29L2IDEo)
[](https://www.youtube.com/watch?v=5koIhn3qlk4)
[](https://www.youtube.com/watch?v=TJgxjVTZtfw)
[](https://www.youtube.com/watch?v=EViAho-6qoc&pp=ygUMZWJwZiB3aW5kb3dz)
[eBPF](https://ebpf.io/) is a technology that can run sandboxed programs in the operating system kernel without changing kernel source code or loading kernel modules. By making the operating system kernel programmable, infrastructure software can leverage existing layers, making them more intelligent and feature-rich without continuing to add additional layers of complexity to the system.
**eBPF Architecture Overview. Credit: [eBPF.io](https://ebpf.io/)**
[eBPF for Windows](https://github.com/microsoft/ebpf-for-windows) is an eBPF implementation that runs on top of Windows. eBPF is a well-known technology for providing programmability and agility, especially for extending an OS kernel, for use cases such as DoS protection and observability.
* [Cilium L4 Load Balancer using eBPF-for-Windows](https://github.com/microsoft/ebpf-for-windows-demo/blob/main/cilium/load_balancer/docs/CiliumL4LBSetup.md)
* [Connection Tracking with Native eBPF program using eBPF for Windows](https://github.com/microsoft/ebpf-for-windows-demo/blob/main/connection_tracker/README.md)
**eBPF for Windows Architecture Overview. Credit: [Microsoft](https://cloudblogs.microsoft.com/opensource/2021/05/10/making-ebpf-work-on-windows/)**
[XDP for Windows](https://github.com/microsoft/xdp-for-windows) is a Windows interface similar to XDP (eXpress Data Path), used to send and receive packets at high rates by bypassing most of the OS networking stack.
* [Usage](https://github.com/microsoft/xdp-for-windows/blob/main/docs/usage.md)
* [Development](https://github.com/microsoft/xdp-for-windows/blob/main/docs/development.md)
* [AF_XDP API](https://github.com/microsoft/xdp-for-windows/blob/main/docs/afxdp.md)
* [Release and Support](https://github.com/microsoft/xdp-for-windows/blob/main/docs/release.md)
### MFA
[Back to The Top](#table-of-contents)
**Multifactor Authentication (MFA)** is when you sign into your online accounts - a process we call "authentication" - you're proving to the service that you are who you say you are. Traditionally that's been done with a username and a password.
[YubiKey](https://www.yubico.com/) is a security device that makes two-factor authentication as simple as possible. Instead of a code being texted to you, or generated by an app on your phone, you simply press a button on your YubiKey. Each device has a unique code built on to it, which is used to generate codes that help confirm your identity. The YubiKey USB authenticator includes NFC and has multi-protocol support including FIDO2, FIDO U2F, Yubico OTP, OATH-TOTP, OATH-HOTP, Smart card (PIV), OpenPGP, and Challenge-Response capability to give you strong hardware-based authentication.
[Authelia](https://www.authelia.com/) is an open-source authentication and authorization server providing two-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for [reverse proxies](https://github.com/authelia/authelia#proxy-support) by allowing, denying, or redirecting requests.
[ZITADEL](https://zitadel.com/) is an open-source authentication and authorization server providing two-factor authentication combining the best of Auth0 and Keycloak. Built for the serverless era. It includes Multi-tenancy with branding customization, secure login, self-service, OpenID Connect, OAuth2.x, SAML2, LDAP, Passwordless with FIDO2 (including Passkeys), OTP, U2F, and an unlimited audit trail is there for you, ready to use.
[Microsoft Authenticator](https://support.microsoft.com/en-us/account-billing/download-and-install-the-microsoft-authenticator-app-351498fc-850a-45da-b7b6-27e523b8702a) is an app helps you sign in to your accounts when you're using two-step verification. Two-step verification helps you to use your accounts more securely because passwords can be forgotten, stolen, or compromised.
[Google Authenticator](https://support.google.com/accounts/answer/1066447?hl=en&co=GENIE.Platform%3DAndroid) is a software authenticator developed by Google that implements multi-factor authentication services using the Time-based one-time password and HMAC-based one-time password, for authenticating users of software applications.
### Windows Forensic Analysis
**Windows Forensic Analysis** is the process of building in-depth digital forensics knowledge of Microsoft Windows operating system.
- [SANS FOR500: Windows Forensic Analysis Course](https://www.sans.org/cyber-security-courses/windows-forensic-analysis/)
**Forensic Tools**
* [AChoir](https://github.com/OMENScan/AChoir) - Framework/scripting tool to standardize and simplify the process of scripting live acquisition utilities for Windows.
* [Crowd Response](http://www.crowdstrike.com/community-tools/) - Lightweight Windows console application designed to aid in the gathering of system information for incident response and security engagements. It features numerous modules and output formats.
* [DFIR ORC](https://dfir-orc.github.io/) - DFIR ORC is a collection of specialized tools dedicated to reliably parse and collect critical artifacts such as the MFT, registry hives or event logs. DFIR ORC collects data, but does not analyze it: it is not meant to triage machines. It provides a forensically relevant snapshot of machines running Microsoft Windows. The code can be found on [GitHub](https://github.com/DFIR-ORC/dfir-orc).
* [FastIR Collector](https://github.com/SekoiaLab/Fastir_Collector) - Tool that collects different artifacts on live Windows systems and records the results in csv files. With the analyses of these artifacts, an early compromise can be detected.
* [Fibratus](https://github.com/rabbitstack/fibratus) - Tool for exploration and tracing of the Windows kernel.
* [Hoarder](https://github.com/muteb/Hoarder) - Collecting the most valuable artifacts for forensics or incident response investigations.
* [IREC](https://binalyze.com/products/irec-free/) - All-in-one IR Evidence Collector which captures RAM Image, $MFT, EventLogs, WMI Scripts, Registry Hives, System Restore Points and much more. It is FREE, lightning fast and easy to use.
* [Invoke-LiveResponse](https://github.com/mgreen27