diff --git a/images/win/scripts/Installers/Install-KubernetesTools.ps1 b/images/win/scripts/Installers/Install-KubernetesTools.ps1
index e0482bb1..eb44761f 100644
--- a/images/win/scripts/Installers/Install-KubernetesTools.ps1
+++ b/images/win/scripts/Installers/Install-KubernetesTools.ps1
@@ -1,15 +1,25 @@
 ################################################################################
 ##  File:  Install-KubernetesTools.ps1
 ##  Desc:  Install tools for K8s.
+##  Supply chain security: GitHub Kind - checksum validation, Kubectl, Helm, Minikube - by package manager
 ################################################################################
 
 Write-Host "Install Kind"
 # Choco installation can't be used because it depends on docker-desktop
-$url = 'https://api.github.com/repos/kubernetes-sigs/kind/releases/latest'
-[System.String] $kindDownloadLink = (Invoke-RestMethod -Uri $url).assets.browser_download_url -match "kind-windows-amd64$"
+$repoUrl = 'https://api.github.com/repos/kubernetes-sigs/kind/releases/latest'
+$assets = (Invoke-RestMethod -Uri $repoUrl).assets
+[System.String] $kindDownloadLink = $assets.browser_download_url -match "kind-windows-amd64$"
 $destFilePath = "C:\ProgramData\kind"
 $null = New-Item -Path $destFilePath -ItemType Directory -Force
-Start-DownloadWithRetry -Url $kindDownloadLink -Name "kind.exe" -DownloadPath $destFilePath
+$packagePath = Start-DownloadWithRetry -Url $kindDownloadLink -Name "kind.exe" -DownloadPath $destFilePath
+
+#region Supply chain security - Kind
+$fileHash = (Get-FileHash -Path $packagePath -Algorithm SHA256).Hash
+$hashUrl = ($assets.browser_download_url -match "kind-windows-amd64.sha256sum") | Select-Object -First 1
+$externalHash = (Invoke-RestMethod -Uri $hashURL).ToString().Split("`n").Where({ $_ -ilike "*kind-windows-amd64*" }).Split(' ')[0]
+Use-ChecksumComparison $fileHash $externalHash
+#endregion
+
 Add-MachinePathItem $destFilePath
 
 Write-Host "Install Kubectl"
@@ -21,4 +31,4 @@ Choco-Install -PackageName kubernetes-helm
 Write-Host "Install Minikube"
 Choco-Install -PackageName minikube
 
-Invoke-PesterTests -TestFile "Tools" -TestName "KubernetesTools"
\ No newline at end of file
+Invoke-PesterTests -TestFile "Tools" -TestName "KubernetesTools"