When I first upgraded to Windows11 VirtualBox performance was bad have the green turtle. Then I finally found a fix and it was to go into registry editor and disable EnableVirtualizationBasedSecurity. I want to know if its ok to disable?
May I ask why you use VirtualBox in the first place? Is there a specific feature you need from it?
Compared to HyprV or QEMU (can run on Windows) the performance is everything, but not great, and you have limited functions/integrations.
it would not be smart to have that disabled.
Virtualization-based security, or VBS, uses hardware virtualization and the Windows hypervisor to create an isolated virtual environment that becomes the root of trust of the OS that assumes the kernel can be compromised.
I know with the recent HV crack for games its become cool to disable a whole bunch of core security features on Windows but, its a terrible idea.
I know with the recent HV crack for games its become cool to disable a whole bunch of core security features on Windows but, its a terrible idea.
Not sure what if you mean HyprV with HV, however that “modder” disabled core security features or the whole security suite of windows completely is not really new and even under Windows 10 there were people, programs, and guides which advise/do that.
I am referring to the new hypervisor crack that is being used to bypass denuvo drm in games. Which is a bit more involved then what is typically disabled on Windows to run cracked games.
Oh, so its about playing 
games.
Okay I referred to people who do this to gain more performance and FPS in games.
exactly. disabling VBS is one of the first steps to getting it to work, which is why I brought it up in the first place.
Yeah, as long as you don’t give admin rights to everything and keep UAC on the highest setting or use a standard user account. If you’re using untrusted software that requires admin rights, you shouldn’t turn it off either.
Virtualization Based Security can have a significant impact on virtualization performance in hypervisors like VirtualBox which aren’t designed to work with it since it is really making your main OS run as a guest to a transparent hidden hypervisor which enforces additional security measures and isolation of key security components from outside the main kernel. Similar to Qubes for Windows but without any customization of the isolation or domain separation.
Whatever you’re trying to get at about “heuristic endpoint analysis” is not relevant to this conversation and I’m not sure what you’re trying to say.
It provides Windows’s strongest security features, I would strongly recommend against disabling it. Is there a reason you can’t use Hyper-V or another hypervisor that supports acceleration via WHPX under the hood? Hyper-V/WHPX are designed to work with Virtualization Based Security and should not have any performance impact with it enabled.