Hacking Windows 11 SE
HTML-код
- Опубликовано: 28 май 2024
- Hello, my friends! Let's hit 20K likes? Check out my website! enderman.ch
Today I am going to show you how to hack the Windows 11 SE edition to run .exe and sideload .dll applications. The way the SE edition works is almost no different to how the Windows 10 S Mode does. It uses Code Integrity policies within «App Control for Business» with a little twist. Fundamentally, though, the new S Mode is very different to the old S Mode.
DIY:
1. Reboot into recovery/Windows PE. To reboot into recovery, use the ROFT command: shutdown -r -o -f -t 0
2. Mount ESP (EFI System Partition), I'll refer to it as W:.
3. Locate and enter the W:\EFI\Microsoft\Boot\CIPolicies\Active directory.
4. Wipe all the code integrity policies - the *.cip files.
5. Profit!
Install command: dism.exe /apply-image /imagefile:install.wim /applydir:?:\
Install tutorial: • Manually installing Wi...
Links:
Windows 11 SE (non-bootable) - files.enderman.ch/uploads/260...
Generate custom images using UUPDump - go.enderman.ch/uupdump
Device Guard basics (in Russian) - go.enderman.ch/yC3W7
App Control for Business - go.enderman.ch/vmXpZ
PKCS7 certificates - go.enderman.ch/cBCqG
Password:
mysubsarethebest
Timestamps:
0:00 - Intro
0:19 - About Windows 11 SE
0:53 - Acquiring the image
2:01 - Installing
3:29 - The «E Mode»
5:19 - Early ideas
6:17 - Audit mode
7:52 - Local account
10:04 - Device Guard single-policy files
10:52 - Regeneration
11:23 - Multi-policy files
12:16 - Success
13:00 - Finishing the install
13:51 - Final product
14:52 - Outro
Still got questions? Don't hesitate, send them to contact@enderman.ch!
Hope you have a great day!
#endermanch #experiments #windows 
Наука
Let's just hope RUclips doesn't take this video title too seriously
They sure did last time lol
shouldve add the education purpose only bs
fr@@neuvx
they very well might
for real
2:42 ah, my favorite cmd commands, "ass letter w" and "ass letter c"
It stands for "assign" lol
@@Aura_Mancer still, it's inherently funny
@@Aura_Mancer I love DiskPart
"ACT"
"COM"
"ATT"
"DET"
"HEL"
"IMP"
"BRE"
"CLE"
"FIL"
"RES"
yeah, these are all real commands, you can run them in DiskPart
then you're gonna find it hilarious that there is a subtitle file format called .ass
😂
I love how Microsoft made a second edition to block your method out and then you came up with another one almost instantly. Can't wait for that second video!
This is exceptable Windows is really not secure since the first version. They still not patched the script for uninstall completely Windows Defender on normal edition of Windows 10/11 so for see Windows become Secure maybe it's gonna be the case in 2066.
@@foglgalb9363You want to be forced to use Windows Defender?
@@foglgalb9363 A fair point.
can't wait for Windows 12 SEX
The LIMBO theme goes hard
fr
@@StarlieWlol
@@StarlieWImagine if he could mess with registry _keys_
Focusing hard on hacking :)
frfr ong no cap deadass
Microsoft: "This Windows SE prevents users from launching apps and has imcredibly tight security!"
Also Microsoft: "So here is the documentation on how to remove SE modes from Windows SE..."
I think it's meant for IT professionals to do, but also I wondered how the school prevents someone from just reinstalling the OS on their computer
@@kingtasticdevbios password?
@@nolemretawbios password can be bypassed
@@nolemretaw Already bypassed in France and Finland on PC school, BIOS password is just not engouth and it have been proved.
the typo helps this comment
3:14 I like how the limbo music stops when the OS boots
Then just says aw yeah
@@8_bitbrawler513yeah lol
great timing
also pi
@@SlightlyGoodGames yeah pi numbers lmao
3:18 ITS BLUE ITS BLUE
I THOUGHT IT WAS GREEN
@javobthespartangamong5828 Perfect timing with the Windows logo
it’s not yellow
IT'S YELLOW
-famous last words
real
The requirement to login with a Microsoft account could be related to the build being an insider preview, Microsoft accounts are required on those builds if memory serves. So it could be worth having a quick look at a normal 22621 build of SE.
Good point, but I once tried to get SE 22000.194 via the same method on some reddit post I found, and I also had that same problem: not being able to use a local account.
No, it's Windows 11 SE's nature
I recently tried Insider, something like canary build 260XX.
It was possible to create a local account with the "domain join" option.
@@fariztech2014 4:45 Actually it *_is_* an Insider Preview.
3:17
LIMBO.
[key moves]
Yo was it green?
[dies]
damn it
it’s piss actually
yea lol
@@gmdtungsten
@@gmdtungsten what is wrong with you
@@fra_1099 have you seen cursed’s completion of limbo
Sick! As a MSP agent, this will be very useful to know in certain legit support scenarios and will likely save a lot time and money for me and my customers.
the more you know!
i can't stop thinking of how it is a coincidence that all of your video's music are used in really hard GD levels.
i dont feel like its a coincidence
On his desktop in a video we can see gd icon
And on his second channel theres gd videos
he is a dasher, he has gd videos on his second channel
what a coincidence, cubehead is a dasher and enderman is also a dasher
Wait, wouldn't the invalid microsoft account trick for creating a local account have worked in this scenario?
It would not, because the local account page is completely removed from the OOBE.
What a scummy way to get customer data lmao
@@EndermanchWhy not adding it back then?
@@Vichingo455 He cant, he doesnt have the source code of Wİndows.
I think audit mode is unlocked because it makes deploying easier, especially on a lot of machines. Also most users don’t know about audit mode, even some that know how to break the system so.. maybe Microsoft just expected people to not know? Hard to tell honestly
The fact that Audit mode bypasses (presumably) device-wide code integrity policies is weird
@@EndermanchYup, but I guess they had to leave in some way to pre deploy stuff
Edit because I thought of this 2 minutes after writing the comment: I mean we know that Windows OOBE is weird anyways lol. Windows in general is
3:18 IT'S BLUE
what
IT'S GODDAMN GREEN
Blue
@@yellow64ur color blind
3:18 You didn't have to sync it SO FRICKING WELL!! That is such high quality editing, to be able to cut out the exact right parts to make the video sync, nice job! Also, this itself is really impressive, you must know at least something about C.
🔑 🔑
🔑 🔑
🔑 🔑
🔑 🔑
1:56 and 2:56 too.
enderman plays geotry das!!1!1!1 real 2024 fr
Bro it's just an edit don't go all crazy 🤣
we should hope that Microsoft doesn't take down this video
nothing better than waking up at 6 am and watching enderman break windows again
im watching this at 6am lmao
These videos just keep getting better, like i am seriously intrested how you have this much knowledge of operating systems
This guy always manages to impress me by the good way. You learned me almost everything about Windows! Keep going ❤
there is no way im hearing limbo geometry dash in an enderman video
you are not alone
now choose yellow
@@maxnewdf nuh uh its blue
@@Qwezeurm actually its green 🤓
its definitely purple guys
its Red guys
Wow man I've been watching you, Flytech, and Siam Alam since 2020, feels nostalgic whenever watching ya'll.
This is not Flytech
Best song in the beginning :) I love Isolation so much!
I feel like endermanch videos are best to watch while youre sick. Nothing to do except to get better again. Just watching videos without understanding anything but still enjoying them.
i think you summoned all the gd players with this one LOL
Wait till someone pauses and turns up brightness and contrast at 2:00
@@Endermanch What does it say?
@@falconrider7032 you gotta find out yourself 🙂
@@falconrider7032 it says F O C U S. Love the attention to detail in the video
@@lemon-rivers Lmao
Top g back on the grind yo. Love your content man.
i never expected enderman, my favorite tech creator, who inspired me to create this channel, to use the limbo theme from funni cube game
tee hee wee hee registry key go duh duh duh duh
that was so unfunny
here is what i thought after i said some things in live premiere chat:
-1. I found out that windows 10 s name is streamlined, so can w11 se be Windows 11 -_-Streamlined Education-_- ?- (how did i miss that image faq in video?)
, i watched video from start to end (during premiere), i haven't paid attention to it)
2. I must have thought wrong, and se default could be not exact the install that is made from uup by changing config ini file or upgrading from pro edition, but its unique iso that has probably wallpapers and more uwp apps out of box (i noticed that inbox apps iso has Minecraft education edition, it would have appear in se installs in laptops that has se preinstalled such as surface laptop se)
3. at the very end of premiere, i talked about how do you (not enderman specifically) think that windows rt can run system components such as internet explorer, explorer, legacy calculator (if it does have) and notepad if running non uwp exes are not allowed? (although i may know how is that possible)
(the comment will be edited)
i think the E in windows 11 SE is more enterprise than education. but idk
All system components in Windows RT got ported to ARM.
The S/SE editions have a whitelist of built in apps that can run. That whitelist _could_ be based on certain specific certificates or not.
You guys have to watch the video thoroughly! The FAQ screenshot in the beginning explains what SE means.
9:14 Didn’t know the Windows 95/98 UI still was in Windows to this day
It has been hidden under the UI layer since Windows 8
windows 2000
@@phonl1since windows 2000, they just paint over it now
You'd be surprised how much shit remains from old Windows
So, to explain a bit
I knew there was still a lot of stuff remaining from old versions of Windows
We can even find apps straight up from Windows 95 like Phone Dialer or Character Map to this day
But I thought the Windows 95 UI was now gone from current Windows versions
Enderman: **Just hacks Windows 11 SE**
Music in the background: 💀
GD players who know what this music is: 💀
For RUclips: What he actually means is that he's debugging Windows SE
Keep it up enderman! Fantastic windows content here
I did this almost 6 months ago lol
Time to remake that video I guess
LAGLIFE? NO WAY
That was kinda interesting, i wonder if there might be another way of doing this without all the manual workforce, maybe the cmd is disabled but you can try doing scripting with something else and overwriting the values directly from the os itself, maybe with wsl (if you can even install it) or with inf files (there's a chance that the protection is there for only a set of apps so if you can override one of those apps with your own maybe you can do interesting things there.
SE to only S is a great step, now the best part is how remove all S mode for a full experience
I've been watching this channel for a long time, and I like it!
Early :) also I'm gonna use this on my school PCs because I have beef with the school's IT dude
Ive been trying to crack chrome os for quite a while. My school's setup is pretty locked down. They even blocked javascript ☠
I love playing around with Windows SE/ S Mode on the display computers at Best Buy. It's always fun seeing what I can and can't do.
thx for the tutorial kek.
also cool bg musics
Andy coming with another banger of a windows torture video😳
my school will probably use this windows version after 10 is done for, thanks for telling me how to hack into it just like what i done with my w10 computer
yeah, my school just has 10. i got autoclicker for my acc
As a person who typically works on Windows 9x I thought at first that Windows 11 Second Edition was just released
9?
@@mr.shplorb662 95, 98, Me
damn bro is living in 1995
6:38 Not sure if you noticed in the top right corner but there is a warning that the system is not secured. Microsoft probably knows about this vulnerability, but still left it there. I can't say for sure tho, that warning may be caused by something else.
It's always there if Secure Boot is off.
mmm. ironic, considering that Microsoft makes Windows unsecure
3:08 I like how the restart synced with the music
FOCUS
- GD Player
I was expecting for 8 keys to start moving around the screen.
i hope you can sue microsoft and google if the video taken down w/o sensible reason. this is EDUCATIONAL!
The music makes me think of keys...
A cool interesting video like always 👍
the beginning got me focused
where do you find the music for your videos? i want to create a playlist
GEOMETRY DASH 🗣️🗣️🗣️🔥🔥🔥🔥
I love how NH22's Isolation summoned the GD community
love ur vids! keep it going
Oh no...
The opening song...
I now know why the algorithm brought me here.
Wait it's the Limbo remix
even more chaotic, aren't we?
Hey, do you know about using qemu/kvm? It does require linux but its incredibly fast, as kvm is a type 1 hypervisor. Probably better than anything windows offers.
damn this music is fire, love how you used the remix from that one geometry dash level
I might be stupid but can't you just use cmd in recovery mode to run regedit and turn off E mode?
I look forward to seeing a video where you upgrade Windows 11 SE to Windows 11.
Best song in the middle, Enderman!
Hey Enderman, i wanted to make a virtual machine with VMware, but when i put the location on my bigger in size disk(D:), it said that it can't create the VM, because there's no Windows10x64.vmx file, but it's not even created when i put it in the normal directory(C:/Users/Daniel/Documents/Virtual Machines/Windows 10 x64).Any help?
Keep up the great work!
What happens if you disable driver signatures? Option 7 in startup settings? I use this at work to disable Windows 11 S mode.
Also, isn't there a way to simply utilize the bypassed system message box after skipping oobe audit mode?
Your videos truly prove the only fun to be had with Windows is in a VM.
With what you've found out, ms-cxh:\\-ing into the OOBE should allow to enter Audit Mode at any time
You should do a video on hacking Win98SE to run modern apps made for the NT kernel - apparently it's possible.
Wasn’t Windows 9x already made to support the same Win32 apps that Windows NT runs?
@@jhgvvetyjj6589 There are significant API differences though, and that's why compatibility modes exist.
@@UltimatePerfection I'm sure the Win32 API is stable since I can use Digital Mars C++ 8.57 to compile the exact same program in any version from NT 3.5 to 11 and 95 to ME and have the exact same executable work there.
@@jhgvvetyjj6589 Yeah, but not if you use Win10-specific APIs or APIs that were introduced after 9x or were only in NT.
Is it a normal thing that it lost the rounded corners during the whole win11 SE session (apart from the end)?
You can actually temporarily disable S and SE mode with adding the ManufacturingMode dword and setting it to 1.
2:57 - 3:26 - No one and nothing will ever hit the music better!
Dang, you know so much about Windows!
Whats your gd hardest(unrelated to the video but you shouldve expected gd comments when you put isolation as the song, especially since limbo remix)
fun fact: u can unlock c and d drive at file explorer (maybe open the settings of file explorer then choose "this pc" is where to go 1st when u run explorer, long time i haven't use Win11 SE lol).
um, what did you do to your vm
it says this pc isnt set up securely on the top right.
did you just skip oobe again using oobe bypassnro
That's there when Secure Boot is off.
its always the limbo music on the windows s mode videos
It's a coincidence, I just wanted to use that one that night haha
Enderman was just very focused
@@kingpanguan lol
@@Endermanch isolation is a fire song so i cant blame you
Amazing video, now do it from a already registered build that you only have access as a user account XD
i was not expecting limbo
Why is the VM display stretched compared to your host computer's display? 🤨
So for the last part you have to track what key flashes and you have to keep track of it
and the legend is back!
RUclips when they see this: THIS IS VERY VERY DANGEROU-
unfortunately they did it to my video :(
took down my entire channel
Very dangerous indeed Haiden Joseph Williams
@@laglife2 contact me... 0ci on the 'cord.
i know how to get channels unbanned and a lot of other stuff... its how im verified.
youtube is so corrupt@@laglife2
thank god we have a guy who uses windows 10 not 11 as i cant reinstall windows 10 because all my files and data and school files/software is on my laptop so grrrrrrrrrrrrrrbut i love that you have windows 10, windows 10/7 for life!!❤❤
Actually E mode came in Windows 11 Pro to me i cant even disable it and it says Windows 11 Pro in S Mode but the ms-store says im not running S Mode???? Plus, SKUPolicyRequired is disabled and there is no way to disable The mode without this method
Hi Enderman! I Have an idea for a video! What if you moved the recycle bin to con?
Dont want create microsoft account? In the box where it asks email spam y with enter until it errors and lets u create an account
Also pass box spam y 😅
LETS GOOOOO NEW ENDERMAN VIDEO
13:02 Did it fall back to the OOBE from early versions of Win10?
it does that if you reboot a few times out of the normal OOBE
@@markusTegelaneHonestly can't tell if it's intentional, or just one of the usual OOBE breakages
Disabling CI from the same device could allow breaches as any malware can do it but idk if they will, only works in this bug filled version
this guy is alone creating awareness for cybercrimes in the smartest way possible
when i heard isolation, i instantly knew it was gonna be fire
Hi! I have a cool suggestion for your video if you havent made one. Please make a video about windows embended CE 6.0 (Or any version) as its litearlly in hidden menus in my car... And i wanna know more about it because its very mestirius
Got an interesting one for you... Try to modify a windows 11 ISO to be 32-bit, by using 32-bit windows 10 files somehow. or get UEFI working on windows 9x
3:08 enderman in this time: THIS IS FU•••NG LIMBO
This is guy is too FOCUSED on this video bro
(Limbo is crazy)
In normal Windows 11 if you type "a" as the username and password for a Microsoft account it fails and lets you create a local account, at least that's what I've been doing for quite some time, maybe it works here too?
you know someone at micro$oft is gonna be pissed when a new enderman video pops up
i have limbo brainrot so hearing isolation limbo remix at the start of the video genuinely made me do a double take for a sec
The E in "SE" Stands for "Education", which means that this was supposed to be called "Windows 11 S Education", but they decided to call it "Windows 11 SE".
You'd better try to make a REAL GREAT thing - try to convert Windows 11 PE x86 to usable and installable system for work as a daily driver for older PCs!
The link to it can be found at MDL or other sites, I can't post links due to RUclips restrictions.
oh
LIMBO music was an awesome surprise
When I saw this, I realized again how simple the Linux terminal is
we are not the same
The S mode still exists, but it is only installed on new PCs
was this easier or harder to install than 10 S?