This module gives info on the CrowdStrike Falcon sensor for a given machine. The data comes from the /Applications/Falcon.app/Contents/Resources/falconctl stats command.
Version 3.0 is required for CrowdStrike sensor versions 6.11 and greater. Use version 2.3 for older sensor versions.
Included are widgets for sensor versions:
and for uninstall protection:
- sensor_id - VARCHAR(255) - Unique host ID of the client's sensor
- sensor_version - VARCHAR(255) - Version of the client's sensor
- customer_id - VARCHAR(255) - The customer ID checksum (CCID) for the sensor's instance
- sensor_operational - INT(11) - Boolean value for the sensor operational status. 1=Enabled 0=Disabled
- sensor_installguard - INT(11) - Boolean value for the sensor's uninstall protection policy. 1=Enabled 0=Disabled