Added more info to the FAQ article

Wiki posts/Miscellaneous/Answers to the Basic Frequently Asked Questions.md

@@ -58,7 +58,7 @@ Uninstall it by going to Windows Settings -> Apps -> Installed Apps -> Search fo
 
 <br>
 
-## What’s the First Thing to Do After Reinstalling or Resetting Windows?
+## What's the First Thing to Do After Reinstalling or Resetting Windows?
 
 * Check and install any updates from Windows Update
 * Check and install any updates in Microsoft Store
@@ -119,6 +119,68 @@ No. The [requirements](https://github.com/HotCakeX/Harden-Windows-Security#requi
 
 <br>
 
+## How to Prepare for a Firmware Update
+
+Modern devices receive firmware updates as capsules through Windows Update, similar to other system updates. Before restarting your system to apply the firmware update, ensure the following steps are completed to avoid potential issues:
+
+### Backup Your BitLocker Recovery Keys
+
+It's crucial to back up your BitLocker recovery keys before updating the firmware. Use the Harden Windows Security Module to simplify this process. The 48-character recovery key for your OS drive will be required to boot your system after the firmware update is applied.
+
+### Ensure Internet Connectivity After the Update
+
+Once the firmware update is installed, you will need an active Internet connection to reset your Windows Hello credentials. This process involves signing into your Microsoft account and authorizing the login using the Microsoft Authenticator app.
+
+The Harden Windows Security Module's Lock Screen category does not allow unauthorized people to change network settings on lock screen before logging in. Ensure your current Wi-Fi network is saved on the device and accessible post-update.
+
+### Manage VPN Configurations
+
+If you use VPN software with a kill switch or settings that require user interaction to connect at startup, disable these features before initiating the update.
+
+### Recovery Options if Internet Connectivity Fails
+
+If you're unable to connect to the Internet due to missed preparations, you have several recovery options. These require accessing the Windows Recovery Environment (WinRE) and launching a command prompt (CMD):
+
+#### Backup Your Files
+
+Launch a program like Notepad or Task Manager, then navigate to File -> Open to access a file browser. This allows you to copy important files from the OS drive to another location and if you ever decide to perform a clean OS installation, you won't lose any files.
+
+#### Enable the Built-in Administrator Account
+
+Launch `regedit.exe` to enable the built-in Administrator account in WinRE. After restarting your device, log in as the Administrator to resolve issues (e.g., enabling clean boot or uninstalling VPN software).
+
+Once the recovery steps are complete, use `lusrmgr.msc` to disable the built-in Administrator account for security reasons.
+
+> [!TIP]\
+> To enable the built-in Administrator account with a blank password from WinRE:
+>
+> Locate the OS drive by using the `CD ..` command to move to the root directory, and `Dir` to list drive contents.
+>
+> Switch drives using their letter (e.g., `D:`, `F:`). Identify the OS drive and note its letter.
+>
+> Open the Command Prompt and type `regedit`.
+>
+> In the Registry Editor, select `HKEY_LOCAL_MACHINE`, then navigate to File -> Load Hive.
+>
+> Load the hive from the path: `OS Drive Letter:\Windows\System32\Config\SAM`.
+>
+> Provide a name for the hive, e.g., `Hive`.
+>
+> Navigate to `HKEY_LOCAL_MACHINE\Hive\SAM\Domains\Account\Users\000001F4` and locate the binary value `F`.
+>
+> Modify the 8th-row, 1st-column value from `11` to `10` to enable the Administrator account.
+>
+> Save changes.
+>
+> Unload the hive by selecting `Hive` under `HKEY_LOCAL_MACHINE` and choosing File -> Unload Hive.
+>
+> Restart your device.
+>
+> The built-in Administrator account will appear on the login screen.
+>
+
+<br>
+
 ## Have More Questions?
 
 Ask away by opening [a new Discussion](https://github.com/HotCakeX/Harden-Windows-Security/discussions)