Kali ISO download shows as current threat on Virus and Threat protection list

Hi AntonvRooyen1715,

it's not unusual for Windows Security to raise alerts when scanning a Kali Linux ISO, as Kali Linux is primarily designed for penetration testing and ethical hacking. The tools included in Kali Linux are often flagged due to their potential misuse, even though they are not inherently harmful.

Downloading the ISO from the official Kali Linux website minimizes the risk of compromise, but it's advisable to verify the file integrity by checking its hash against the one provided on the website.

If Windows Security detects threats within the ISO file and doesn't remove them, it may be because the threats are embedded in the image. Deleting the ISO file may not resolve the issue, as Windows Security retains a scan history that includes the recorded threats.

To clear the Windows Defender history:

1. Navigate to C:\ProgramData\Microsoft\Windows Defender\Scans\History\Service.
2. Delete all contents within the Service folder.

This action only clears the threat history, not the actual threats.

antivirus - Windows Defender found threats in Kali Linux disc image - Information Security Stack Exchange

WINDOWS DEFENDER IS NOT REMOVING THREATS - Microsoft Community