We have already seen how Data Execution Prevention, a security feature can help prevent damage to your Windows 10/8/7 computer from viruses and other security threats. Harmful programs that try to attack Windows by attempting to execute code from system memory locations reserved for Windows and other authorized programs are stopped. These types of attacks can harm your programs and files. DEP can help protect your computer by monitoring your programs to make sure that they use system memory safely. If DEP notices a program on your computer using memory incorrectly, it closes the program and notifies you. It is a security feature.
While it is not recommended, you may have your reasons for wanting to disable Data Execution Prevention on your Windows computer. Lets us see how to disable DEP in Windows 11/10 using the bcdedit.exe tool.
Before you begin, you need to make sure that Secure Boot has been disabled on your system; else you may see The value is protected by Secure Boot policy and cannot be modified or deleted error message,
Disable Data Execution Prevention in Windows 11/10
Type cmd in Start Search. Right-click on search results ‘cmd’ and click on Run as Administrator. You can also open an elevated command prompt window via the WinX menu.
Then, copy-paste the following and hit Enter:
bcdedit.exe /set {current} nx AlwaysOff
You will see the message – The operation completed successfully.
Reboot.
You will find that Data Execution Prevention has been disabled on your Windows computer.
You may then, if you wish, verify the status of the Data Execution Prevention feature on your system.
Enable Data Execution Prevention in Windows 11/10
To enable back DEP, type the following in an elevated command prompt and hit Enter:
bcdedit.exe /set {current} nx AlwaysOn
This will enable back Data Execution Prevention.
See this if you receive The boot configuration data store could not be opened message.
Read: Turn Off or On Data Execution Prevention (DEP) for Individual Programs.
