The Agent Skills Directory

[SAFE]: The skill provides documentation and scripts for managing CrowdStrike Falcon EDR across multiple platforms. All external references are to official CrowdStrike domains (falcon.crowdstrike.com, api.crowdstrike.com) or reputable technical resources such as MITRE ATT&CK and NIST.
[SAFE]: The Python scripts (scripts/agent.py and scripts/process.py) utilize the official crowdstrike-falconpy library and follow industry best practices for handling API credentials via environment variables and command-line arguments rather than hardcoding secrets.
[SAFE]: The deployment instructions involve administrative commands (sudo, sc query, reg query) and network communication to ts01-b.cloudsink.net. These operations are consistent with the skill's primary purpose of installing and configuring endpoint detection and response (EDR) software.
[SAFE]: No malicious patterns, such as obfuscation, unauthorized data exfiltration, or suspicious remote code execution from untrusted sources, were identified during the analysis.

deploying-edr-agent-with-crowdstrike