It doesn't mention whether the client verifies the TLS certificate. If not, that's bad. If it does, then this would have to run on a computer with the corporate CA trusted. It might not be a good idea to run this thing on a computer you don't own on such a restricted network, due to other monitoring on the computer itself.
For sure. Corp desktops often have their running programs surveyed. That said those more likely to run this program (engineers and IT folks) tend to run a lot of esoteric software compared to to the typical desktop. A weirdo or two just fall off the edges of monitoring.
