The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill utilizes the 'LnkParse3' library, which is a standard and verifiable package from the Python Package Index (PyPI) used for parsing Windows shortcut files.
[COMMAND_EXECUTION]: The workflow documentation includes instructions for standard forensic procedures using system commands such as 'mount', 'cp', and 'find'. These are appropriate for the tool's purpose and are not executed automatically by the agent script.
[SAFE]: Comprehensive analysis shows that the Python agent operates locally and as intended for forensic reporting. There are no indications of obfuscation, hardcoded credentials, or unauthorized network activity.

analyzing-windows-lnk-files-for-artifacts