cowbird is a tool for triggering endpoint detection and response (EDR)
agents, and produces structured logs for regression testing.
Select an installation method for installing cowbird:
sh
RELEASE=cowbird-0.1.1-macos-x86_64
sha256sum -c ${RELEASE}.shasum
tar -C /usr/local/bin ${RELEASE}.tar.gz
cargo install cowbird``` cowbird 0.1.1 EDR tool
USAGE:
cowbird [OPTIONS]
OPTIONS:
-l, --log
SUBCOMMANDS:
start Starts a new process
create Create a file
modify Modify a file
delete Delete a file
send Send data over network
script Run commands from YAML input
cowbird-start
Starts a new process
USAGE:
cowbird start
ARGS:
cowbird-create
Create a file
USAGE:
cowbird create
ARGS:
cowbird-modify
Modify a file
USAGE:
cowbird modify
ARGS:
cowbird-delete
Delete a file
USAGE:
cowbird delete
ARGS:
cowbird-send
Send data over network
USAGE:
cowbird send
ARGS:
cowbird-script
Run commands from YAML input
USAGE: cowbird script [FILE]
ARGS:
OPTIONS: -h, --help Print help information ```
See examples/test.yaml as an example for using YAML document separators for ingesting multiple commands, and how those command inputs are formatted.
If building from source on a unix like system the example can be run with ./examples/test.yaml,
or the script can be run with a pre-built binary using cowbird script ./examples/test.yaml.
Licensed under either of
at your option.
Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.
See CONTRIBUTING.md.