TLDW: Downloading Custom ISOs will compromise you. It is just a matter of time. Build them yourself! Tiny11 has a builder and the only change I'd make is swaping the oscdimg.exe with the Windows ADK official oscdimg.exe as shown in video. MAKE YOUR OWN ISOs! Article Link with links to above resources: christitus.com/tiny11-has-problems/

The official Windows ISO is also spyware though.

Reporting you: your clickbait thumbnail says Tiny11 INFECTED but your video has general info about what might happen with custom ISO's only. No info about what is infected int Tiny11. The warnings about custom ISO's are valid, but your clickbait about INFECTED with no proof has cost you the respect I HAD deveoped for you over the years.

IMO that man did not go to prison for what he did. He went to prison for what the prosecutor and MS convinced the court he did. They made the court believe that he was giving away free license keys, when in fact, those license keys were stored on the motherboards of the laptops when they were manufactured.

Some people do it, not out of the goodness of their hearts, but rather to show off how much skill they have, which is highly valued.

Always make your own lite versions. There are plenty of instructional videos. You will then know what to do if Microsoft Updates break things. The other problem with a custom iso is MS update will eventually break it or install the stuff you wanted left out.

Bringing some awareness is fine, but there are quite a few conjectures being made with little to no proof to back them up....

The problem is Chris, who do you trust? No one. When even using MSMG Toolkit and NTLite, you have no guarantee its not doing something in background when removing stuff and repacking the ISO, because its not an official bit of software from Microsoft. They even get flagged as Malware by some antivirus program, but its probably false positive. I have never shared my own ISO's with anyone, yes I have reviewed some nice custom windows iso from people and some I really like, but I only ever install them on virtual machine. I just done one today which look real nice, but the links he was using are all bad links leading to malware, which I did highlight in the video, debating whether to even leave that video up after thinking about it after I made it. But my advise has always been the same, never use other peoples creations, either create your own or use LTSC from Microsoft if you can get a legit key.

I used to do a lot of winXP and server 2003 versions and combined iso's, with modified themes, auto installers for software etc. It was both fun and a big time-saver for what I used to do regularly. By the time of 7 there wasn't quite as much need for me, and there were fairly easy installers like Ninite. It was often just having iso's with the updates applied. Haven't really had the need to do too much for 10/11 either, since there was stuff like Rufus, and more recently Ventoy. It now is mostly about de-bloating and cutting telemetry. Most of that I prefer to do manually as Updates have too much of a habit of resetting policies etc.

I thought you actually found something in Tiny 11. All video is at the end speculation if you haven't found something concrete.

Just built my own Tiny11 iso thanks to you. I had the impression that it'd be a huge undertaking getting it to work but it turned out pretty easy after I understood how to install the APK for a proper oscdimg. While I wouldn't ever trust a custom ISO from the internet, I'm really glad it was possible to create my own. Thanks!

Seeing people completely misunderstand what you're saying in the comments saying with self-affirmation how it seemed "scammy" or how their paranoia saved them really doesn't sit well with me. Doing some reading, it sounded like that person who was sentenced to 15 months in prison was selling it not merely redistributing it. The supposed monetary value in the ruling doesn't really make sense, but claiming that custom ISOs are illegal based on this is complete misrepresentation of the problem. Also bringing up a potential correlation to Tiny11 installs and KZbin hacks with no proof for this statement spreads unnecessary fear and doubt. Don't get me wrong, it probably isn't a good idea to install a prebuilt custom ISO for Windows. There absolutely could be software preinstalled designed to steal your information. But you don't need to misrepresent the situation to get that point across.

It's funny how custom Windows ISO trend is coming back. I remember that same trend in the XP era, I was using Windows XP LSD (Light Safe Design). Running a custom used to be being the cool kid XD

Thank you for covering this Chris, I had been on linux for 2 years but had to switch over to windows 2 weeks ago because of general frustrations with little things not working, I saw recommendations for Tiny11 and I thought I would give it a go. I know better than to use custom ISOs but I figured that this would save me some time on debloating manually. Security concerns aside there are already plenty of issues with this ISO. Some critical windows services have been outright removed, most Microsoft related things entirely broken and the resource usage still unforgiving because of using Win11 as a base. After this abrupt reminder on why i stopped with windows in the first place i ran back to linux in a week 😂

Don't get me wrong, I understand the paranoia. But what is the actual proof of malware? I agree, building your own installer is generally safer, but without actual evidence of malware and malicious bins/exes this is nothing more than shilly paranoia.

4:49 With this logic, (which I happen to agree with) why would you trust Microsoft? Being a massive company with a massive tax burden AND government contracts, aren't they capable and beholden to the government and/or bad actors therein? Is there ANYBODY that can be trusted?

Idk man, honestly the video tittle is a bit too clickbaity. I just installed tinyw11 on a vm simply to backup my phone and to refresh my side loaded apps. Honestly I’ll take a look at the builder but for now I probably will just keep tiny11 up cause honestly the uses is simple and I’m not passing too many sensitive things.

THANK YOU. I really appreciate that you ask viewers to question the MOTIVES of people releasing stuff for free. This doesn't mean that everyone's motives are bad, but they obviously have them and it's simply a good starting point to ask yourself or others what they are. My first two questions with every project and binary blob is, "who did this?" and, "why?" Some people just do things because it's a challenge or because they want the attention, but it's all too easy to lure people in with things that are too good to be trustworthy. A related video to watch after this is Linus Tech's video about "Android TV boxes". I was not even slightly surprised by the software discoveries as I've suspected these products since they appeared on the market, but I was surprised by the hardware trickery as I simply hadn't thought of it ;). The irony there is that people *are* paying up front for the products.

It's not just the maker of a modified OS, when there's no official site any one can mod the ISO and host it.

Pretty sure it's safe to assume this video's fully sponsored by Microsoft. Tiny 11 works just fine, people. It runs faster on lesser hardware, with Windows Defender and the Microsoft Store still fully functional. Watch ETA Prime's Tiny 11 video instead.

I've also worked in IT for a long time and we've made sysprepped custom ISO to speed up local installs and include $OEM patches so that the server might actually boot on first run rather than require an expensive field tech visit to bring up the network

This was a piss poor video. Had you just stuck to "custom ISOs can't be trusted, they may contain malware" it would've been fine. But the other points you mentioned were just crap. For example, if you're not going to trust NTDev's custom ISOs why the hell would you trust their custom tools to build the ISOs? It goes against everything you rambled on about. As for the "why isn't it on official sites?", that's purposely being deceptive because you already know the answer. You know Microsoft isn't putting these custom ISOs on any of their platforms, so why are you suggesting that they can be? For a random KZbinr that claims to have worked IT, you should know better.

Guess my paranoia saved me this time

So you make a video titled tiny11 has problems with a thumbnail saying tiny11 infected but the video does nothing to prove there is malware in the build. A lot of possibly or maybe but no hard evidence given. You should have done this properly with installing fresh tiny11 then run every virus and malware scanner you can get your hands on to check the system out. Otherwise clickbate for shock value views.

:) Coming from a guy with a video "Remove _ANY_ virus"... Praying on popularity of Tiny11 and without a shred of a proof... Nah... Skip

I installed T11 on a laptop for testing, but then started using it regularly. I've been in IT for over 20 years as well and should have known better. I definitely needed to hear what you had to say Chris. Time to make my own personal version before something bad happens.

Thanks for putting out this PSA Chris. More people need to wake the hell up!

Could you please tell us exactly what's wrong with Ghost Spectre? Since you mentioned it then you must know something.

this is an important topic and I think it should be covered better, let's start why people even consider those stripped-down Windows images - this has clearly become Microsoft fault their vanilla operating system is so mediocre people seek for more "usable" options, then there's trickery when trying to legally obtain official Windows ISO - simply impossible, again Microsoft fault, they are so obsessed with pushing people into latest versions one needs a Mac/Linux system to actually bypass Microsoft website check and get full genuine ISO instead of some .exe install download/builder, then, there's problem of installing Windows - again Microsoft fault because it's no longer possible to simply install genuine Windows you download, there's all sorts of trickery like Microsoft online account and other garbage which should not be mandatory, yet they appear they are, then there's lack of core functionality in Windows - again Microsoft fault, they pretend to deliver fully functional product, yet it doesn't include basic dependencies like MSVC, DirectX, can't open Microsoft file formats, print PDFs etc... to sum it up, Microsoft should address the fact their official products is so shitty that majority of those custom ISOs are that much better people are actually opting for them, compromising security and integrity of their work devices - will they? who knows, meanwhile they focus on throwing more useless garbage into Windows instead...

I'd say there's always a risk, just trust what you like to trust, and live with it. I trust Ghost Spectre and Garuda Linux, daily driving them time to time everyday.

Your point is legit however there's a big difference between suggesting and having a proof. So do you have any proofs that tiny 11 has any malicious software in it?

Thank you Chris for bringing this up. I never try any Iso from any company. I still use windows due to their ms office on separate machine and I do not do anything else. I using arch Linux which I had compiled from scratch , keeping things which I need and discarding rest. It’s a steep learning and not for average home user.

I dislike speculation, you can point to the warning of using custom iso's but you can't claim they are inherently bad. You have no evidence of either Spectre or Tiny being bad provided by them directly.

Thank you for taking this stand. When the Tiny11 craze first started just a little while back, I was trying to comment on videos like ETA Prime’s about being weary of custom Windows ISOs. At the very least, individuals should be aware of the risks involved in using custom Windows ISOs. If you don’t know where your OS is coming from, you can’t trust your OS.

I'm delighted you're reminding people Chris, 25 years ago this was commonplace. Remember Vortex Vista, or TinyXP? People eventually got sense (usually buy trial and error) but now we have different generation(s) with a lot more to lose. So props Chris, well done! 👍

Not that I would ever use these custom ISO's, but couldn't the same be said for all these custom Linux distros?

I'll just stick with Linux. Not going through this crap and I ain't trying to fight the oh so "user friendly" Microsoft.

Great advice here. For those who like to experiment with this stuff, I would only do it in a VM on a LAN isolated from your real network. I'd be curious to see what traffic some of these generate during/after install via WireShark. Not curious enough to spend hours installing Tiny11 and combing through its traffic, though. 🤣

I have never tried any custom isos on my main hardware but thanks for the reminder. I would enjoy using windows 7 on my laptop until its death, it got slower with time. Currently, I'm using windows 8.1 and it's great

You have the best timing ever. Built my pc LITERALLY right now and saw this in my notifications, I actually had planned to install and use Tiny11 but never mind that

I've been using Ghost Spectre, but your right. I think tomorrow I'll spend some time going back to original ISO and just run the ps de-bloat tool instead. Kernel level keylogger sounds terrifying!

same can be said with bat files and exe files prepared by ppl like you. i think you should do a video explaining the bat files that you prepared, going line by line to teach us what each line does? or show us a way to do all the debloating manually without using your file.

the biggest reason why i never tried tiny 11 is that every video i saw on it,in the task manager they have way way toomany tasks runnning to be called a debloated os.

thanks Ctt i installed previously tiny 10 on my 6 years old laptop now I know the risk and It's time to remove that shit

I have been a debian fanboy for 15 years. I agree that Debian compared to other distros is kind of "outdated" considering packages etc. But you always reference to debian (stable). I have been using Debian "testing" for years and also Sid (unstable) for a couple of years without any trouble. I would like to see you compare Debian Sid to other distros, especially Arch-based ones. Distros do not matter, that is my opinion. Distributions are just a starting point. You can get to the same result with any distribution. Make a video about Debian Sid, very much appreciated. And keep up the good work!

Never had any issues for years with custom Win isos

A good Followup would be how to get a legit ISO and trim it yourself for performance and features you want (gaming focus?)

This video is a bunch of hypotheticals and misinformation. Clickbait.

Would be good to see a video where you show how to find those possibly dangerous tools hidden in some of the customs ISO's.

So you say that Tiny11 has problems, but in the end it's just assumptions that don't prove anything... is that it?

I see you really didn't provide any proof that all custom isos are bad. Show me proof! Use a custom ISO and show your audience what's going on in the background. I'm not going to blindly take your word for it while using Atlas OS, I enjoy an incredible smooth experience using Atlas OS. It's strunk the windows processes from 135 to 30. It's amazing. Why would you make a video discussing your point on the why but not go actual real life examples, show me screenshots, show me video footage, give me a live demonstration that it is bad.

FACT CHECK: FALSE Look at the new script you can use an official iso and strip most the win 11 spyware. Sorry but untill you proof that that script is doing something wrong you are failing tje fact check! It is opensource you can see what it is doing!

I always thought that modded windows ISOs are most likely malicious, especially for ghost spectre’s ISO. The only iso that i felt like could be ok is atlas since its open source. ( and popular too ) Opensource is only way to know if ur fully safe

FINALLY, i has been searching for this video, thank you for "saving my pc", i didn't wanted to download it until i see at least one of these videos, thanks man :D

Thank you so much for this. It's very important to caution people, because sometimes trusted sources give poor recommendations.

I have had a look at the video and site and I agree that building your own is much better (not that you should have to but hey that’s windows) The tittle of the video and article was a bit click bait. Tiny 11 has problems? What are they? The article and video describe the sort of problems that COULD exist (remember I agree with Chris on not running random windows distributions from the internet) but fails to identify and accuse Tiny 11 of actually having anything wrong with it. Chris love ya channel but this was a mis-step to drive traffic to the video. Again I do agree, don’t run random OSs from the internet!

Thanks for the advice. I'll stay away from the custom iso's but can we trust Microsoft? "The U.S. Department of Justice said Microsoft Hungary will pay the $8.75 million criminal fine, as part of a three-year non-prosecution agreement in which it “admits, accepts and acknowledges” responsibility for employees’ misconduct. Microsoft also agreed to pay nearly $16.6 million to settle related civil charges by the U.S. Securities and Exchange Commission over its activities in Hungary, Saudi Arabia, Thailand and Turkey, without admitting wrongdoing." (reuters)

This does not shock me whatsoever. Custom isos are bad news

Congratulations! Great click bait title!

First, you glanced over your legality example and ignoring a very crucial detail, which is in the article title. The guy was jailed for RE-SELLING these keys, which is definitely illegal, but you claim redistribution as a whole is illegal. To my knowledge, it's not illegal until you're making money from sales, but I'm not an attorney so I accept I may be wrong. Second, you criticize NTDev's custom iso, but praise their customization tools. If you don't trust their custom iso, why should you or anyone trust the tools they used? I do agree with your stance on custom isos, but it's hypocritical to question one product while praising another from the same dev if you don't trust the dev. Third, you're whole "why isn't it on official websites" argument is purposely deceptive. You know Microsoft would never host these custom builds nor do they even offer lighter versions without digging into some hidden developer channel. The fact that there's clearly a demand for lighter versions, yet ignored by Microsoft, should tell you all you need to know about the company. Finally, custom iso or not, nobody should be using Windows for anything personal or important. Unless you're installing Windows behind an isolated VM or on a completely separate machine, nobody should be running any form of Windows including the official versions.

I have Tiny 11 on my HTPC. Love it! NO issues that I can tell.

It should be illegal for Microsoft to force the end users to give up rights & choices well Microsoft gains more control.

I don't like these "There's a good chance to be compromised" when backed up with one event for one custom ISO... At that point, Windows itself has a lot of security vulnerabilities and probably NSA backdoors too. You do you, but this is just paranoia at this point.

Old man ranting about ISOs from developers who do this since the early XP Days. Topkek 😂

It's always struck me as amusing how people going on about Windows spyware and bloat would then turn around and download sketchy ISOs from random internet clown who are apparently trustworthy because they claim to be... and that crowd wonders why I have trouble taking them remotely seriously.

Ladies and gentleman! This is another reason in why Linux bypasses Windows in security and stability by miles! Have you been seeing videos like these about Ubuntu, Linux Mint, or other distributions? Nope!

Is there any point of doing tiny 11 like you said, if we use your debloat tool on our win 11. Would it be the same thing?

Meanwhile, you've also made a video about the official Windows OS is not being safe. Might as well just make a video to not use computers.

So Tiny11 isn't "infected" with anything that you could actually prove? You just know that it *could be*? Damn, I mean, the advice is sound, but talk about bad videos/thumbnails. I build my own, but this is a pretty deceptive premise.

so you didn't find anything except in the make your own. i can understand the warning but your headline was like American media. i would of waited till you investigated more.

What this is saying to me is that there is an actual demand for Windows systems that are not slow and bloated and I wish Microsoft would do something about it with the official release. They probably won't though :(

If we're discussing the security implications of a pre-install debloater script, how about we also address the security implications of asking people to irm iex your own overengineered scripts

Can you show me where in the code these threats are

Good timing! I saw a youtube recommendation for tiny11 (and tiny10) and had been planning on installing the 10 version on my wife's slow laptop -just haven't found the time to just yet. Making my own windows install iso seems like it could be more work, but it would be better than installing malware unawares.

"modifying and distributing windows is illegal" "you should make your own" ........

Tiny 11 is a good idea, but it's not worth the trouble... Once you get it running the way you want, Windows updates changes things...

It gets the compromisation over and done with nice and early - out of the box

I'm on Ghost Spectre now and I've never been happier. That combined with simplewall is a beautiful thing.

dude... good info but.. it's a bit of clickbaite... all you said in a 10min video was that the digital signature date was not visible!!! and urge people to not trust downloads... (a already hugely stressed theme... 30 secs would be enough for this... ;-) what I was waiting is to see you applying some malware tools over the iso... and came out with some valuable info.... OR put the iso live... and analyse the network traffic,,, or even contacting the author about why the oscdimg.exe signature appears tampered... and show us his reply (or absence of reply) hope you do this in a next video... ;-))

I used Tiny 11 for years. Everything run fine, smooth, stable. No problems. Only 2: 1 is Edge installed but not found. 2 is One Drive reg key is disabled. P/s: Old version miss DxPlay, I comment official then they fixed. Love Tiny 11.

Even if security wasnt an issue, those custom ISOs usually tend to brick the system since Windows is heavily intertwined 😅

Thought I was being paranoid about custom os's for a long while but you've conformed my fears

All this said can be true (loggers,crypto mining ..) , just remember you are already sleeping cell even with official windows iso :).

Thanks Man. I've tested reviOs for some days, but I always return official ISO.

The link to your article is broken.

I honestly dont know how people can install custom iso's w/o having panic attacks. For a fairly modern system, just install windows normally and debloat manually or using ctt tools. For an old system, id rather run linux but to each their own

I have my own Windows post-install powershell script that takes bits from your debloat tool and other sources, plus some other modifications that aren't debloating but make it the way I want it, things like adding the network drives.

15 month in jail? i'll take that

I have been trying OS for long time & i can clearly say the optimisation done on Ghost Spectre builds is just impossible for an average user, the level of optimization with perfection is just incomparable with anything else, just an opinion:- then even every Custom Android Roms will be huge security issue right ? But it isn't in 99% case scenarios.

Or you could just use Windows 10 and not dumpster fire Windows 11 that no one should be using ever.

Does Chris have a video about how he makes his articles?

Saying that Linus's KZbin channel could have been attacked via a tiny 11 as a vector without any evidence to support your claim is just irresponsible youtubing (it's a word now). Yes it's possible. Do you have any evidence to support it, you don't. Also they did a pretty exhaustive "what happened" video. Speculation without careful annotation of the same is the beginning of misinformation. Please be careful in the future.

If they covered the instructions on how to generate this magic ISO so everything can be verified. Like open-source.

I knew Tiny11 has problems, oh yeah it contains many malwares, spywares. The sadness thing is, antivirus won`t detect them because it was made for this. That is why I don`t recommend all crap I see on internet, especially on KZbin. Many youtubers think they are pc technicians, and don`t have a real lab.

Thank you Chris ! would appreciate some new videos about deploating windows 10 and windows 11 for 2023, Thank you! God bless and keep up the good work !

Thank you for this video. Because of it I ended up building my own install of Tiny11 rather than just trusting the internet.

guess I'm gonna do my own iso today thank you

I have an LTSC deployed in a VM and its footprint in terms of disk usage is similar to those custom ISOs. Memory wise it can be tamed by disabling services at will.

Yeah... the uncertainty of "ok sounds good BUT... how compromised is it actually!?" does make one such as my self actually run a debloater after installing a fresh out of the box windows from an official ISO, or even using something like NTLite or MSMG to debloat the original iso file. Don't get me wrong, I totally believe that there are "legit custom distros" for windows isos out there! So far for me at least, from a sent/recieved packets over the network for a period of around a month now... Ghost Spectre win 10 custom iso seems alright! but yeah... you never trully know and it's a sad reality! Which points me to the question we're all eager to ask you Titus... that mega overhall revamp of your windows utility... how far along is it atm? I'm eagerly waiting for that "Windows 10 install just finished, open the tool, run it, reboot, and you're done!"

I disagree. I say that custom ISO is great for specific cases. All of those specific cases should never be where you are trying to keep secure though. Specific cases such as gaming/retro pc gaming/ect. I know you preach "Linux", but Linux is too scattered which makes it extremely difficult to use. Even gaming is extremely difficult where you finally get a game to work, reboot and the system will no longer play the game. The mass misinformation and dated information only causes more issues along with the huge, poisonious Linux community.