NSudo: run processes as System or TrustedInstaller on Windows
NSudo is an open source application for Microsoft Windows devices that adds options to Windows operating systems to run processes as TrustedInstaller or System. The program is compatible with Microsoft's Windows Vista operating system and newer versions of Windows, including Windows 7 and Windows 10, and available as 32-bit, 64-bit and ARM versions.
NSudo can be run from the command line or by using a graphical user interface; all of these components are included in the package that you download from the application's official release download page on GitHub.
NSudo is a tool for advanced users and system administrators, as it may be used to change system settings and files that are protected by the system. Examples include disabling services that cannot be disabled, even when you access the Services management interface using an elevated account, gaining control over certain Registry sections, or deleting files that cannot be deleted otherwise.
Download the latest release package from the GitHub repository to get started. You need to extract it to a folder on the system. NSudo does not need to be installed, you can use it right after you have downloaded and extracted the archive.
You have several options now; one is to open the NSudo Launcher folder, then the folder that matches the system's architecture, e.g. x64, and then the program NSudoLG.exe to open the graphical user interface. You need to right-click on the program and select "run as administrator".
Tip: you can also run nsudo.bat in the root folder as administrator as it detects the architecture automatically and launches the right executable.
The interface is straightforward: it displays a menu to select the desired user that you want to run the file with. Available are Current User, Current Process, System, and TrustedInstaller. You may check the "Enable all Privileges" box as well.
All that is left at this point is to use the browse button to select a file that you want to execute using the selected user, and select Run to do so. You could select cmd.exe to run the Command Prompt as System or TrustedInstaller; this gives you more options and more control over the system, e.g. to disable Services or manipulate the Registry.
The command line version offers more options than the graphical user interface. Use nsudo -? to display available parameters. Here are the extra options that the graphical user interface does not support:
- drop the right of the current process.
- create a process with specified Integrity Level options (system, high, medium, low)
- create a process with specified process priority options (idle, below normal, normal, above normal, high, real time)
- create a process with specified window mode options (show, hide, maximize, minimize)
- set the current directory for the process.
- wait.
Closing Words
NSudo is a powerful program for advanced Windows users who want more control over the system, for example to modify protected system features.
Does it come back after every “moment” update?
Yeah right.. Like this is going to stop defender from running =) This is comedy gold right here.
no ‘about the author’ paragraph?
For permanent disable defender is if removed complete from system no just change permission folder.
Just this is joke.
simpler, load Autoruns (SysInternals)
– filter “Defender”
– untag all entries
– reboot
nothing has changed since my 1st modification years ago
I wouldn’t disable Defender imho, it has too many hidden roots inside Windows itself. One time I tried to uninstall it using brute force scripts and then the Onedrive feature stopped working definitely. A reinstallation was needed and since those times I prefer to maintain Defender untouched. It’s a better method to install another antivirus and it will disable Defender in a safer and easier mode (e.g., Avast is the best in this way, and also Panda Cloud Free is good too).
You can not stop defender from running in background or remove it without some penalty. All you can do is to limit telemetry.
@borts,
It’s probably Smartscreen which is preventing WD from being disabled. Get rid of that and the problem should be solved: https://thegeekpage.com/disable-windows-defender-smartscreen/#How_to_disable_the_Windows_Defender_SmartScreen_via_Local_Group_Policy_Editor
Remove Windows and go for Linux.
Linux sucks dude. Besides it’s not comparable to Windows, these OSes are in different classes entirely.
I use Linux as my daily driver. It’s far more stable than Windows. When’s the last time you used Linux, 2010?
@basingstoke
You’re right, dude. Bro, linux is just a bunch of code that starts before the OS, dude. Brobrodude, that shit ain’t even got emojis, dudebrodudeman! Dudebro, it’s no way near as cool as Windows with its hardcoded abilities to make money off the user, bro. Yo brodude man, you’re the coolest dude ever man, bro. Dude.
Lol what? Windows 7 doesn’t come with any Emojis
Download Autoruns and remove the checkmark from Windows Defender. It doesn’t remove it, but it will never run. https://learn.microsoft.com/en-us/sysinternals/downloads/autoruns
Just use “Defender Control”:
https://www.sordum.org/9480/defender-control-v2-1/comment-page-1/#comments
Per this video,
https://www.youtube.com/watch?v=CLIjr7FyxZ8
it also works on Windows 11 too…
Win Defender, is completly the most succesful free-built in antivirus of Microsoft. Really nice product. Saved my ass a lot of times. Has updated malware database, completly strong defence
from whatever smart screen disables. Or if you want better and more upgrated (paid) program,
you can go further. But defender is always on your side.
Why would one disable Windows (or Microsoft) Defender in the first place?. I consider this to be playing with fire big time. Everybody knows that if one is using another A-V, Defender will be disabled on its own and won’t be in one’s way.
Why would I want to disable Windows Defender in the first place? It’s a great anti virus in my opinion. Been using it since Windows 8 and and never had a problem or a virus. Why mess with a good thing, if it ain’t broke don’t fix it.
How a ridiculous article!
I am thoroughly stunned.
Why Should You Disable First-Party Windows Defender?
I can only think that it is “malice or perversely intention (want you to buy a third-party AV where you can expect a back margin)” to guide invalidation without showing the premise.
No sane company will use third-party closed source programs (such as AV).
As I thought, “Ghacks Technology News” seems to be coming to downfall.