Stratir

Offensive systems research

YORU

Yoru

Active research · Private alpha

A Stratir research program developing a tactical command console for authorized offensive security: sovereign local inference, phase-driven engagements, agent-routed capabilities, and findings that survive every transition.

Yoru is a Stratir research project: a tactical command console for offensive security, built for the moment when frontier labs and companies start filtering models, logging sessions, and pulling access from underneath authorized operators.

Status

Research · Private alpha

macOS Apple Silicon

Studio

Stratir

Founder-led applied AI

Platform

macOS · Apple Silicon

Tactical command console

Inference

BYO Ollama

No cloud inference required

Background

What happens when forward deployed meets uncensored cyber capability?

Cloud offensive platforms are consolidating access, filtering model behavior, and logging sessions operators cannot fully control. Authorized researchers and practitioners who require sovereign inference, retained artifacts, and uncensored reasoning chains lack a command surface built for engagements rather than disposable chat.

Yoru investigates the operational layer between raw model weights and a finished engagement: how natural language routes into scoped offensive capabilities, how findings accumulate across phases, and how one continuous thread persists from planning through reporting.

The program evaluates whether a macOS tactical console can govern uncensored local models responsibly for bug bounty, penetration testing, and authorized red team work under explicit scope and review discipline.

Program objectives

Capabilities the program must prove under evaluation.

01

Sovereign inference surface

Operators bring their own Ollama weights with routing tuned for tooling, PoC generation, and multi-stage reasoning without vendor filtering mid-engagement.

02

Continuous engagement memory

One operation, one thread: assets, services, vulnerabilities, and evidence persist across six operational phases without resetting context.

03

Agent-routed offensive skills

Natural language dispatches into scoped capabilities with phase-aware routing rather than generic assistant behavior.

04

Findings-first command canvas

Operators see what the engagement produced, not only what the model said last: a live feed structured for review and reporting.

Technical approach

A command post architecture for authorized offensive work.

Yoru maps the standard offensive workflow into a single command surface: operations sidebar, phase-aware canvas, agent chat rail, and scoped console tied to the active engagement.

Research emphasizes artifact retention, session governance, and model capability mapping so operators can select weights for tooling versus deep reasoning roles without losing review discipline.

01

Phase-aware canvas routing

Canvas context switches across PLAN, RECON, ENUM, EXPLOIT, POST, and REPORT while chat history and findings remain attached to the operation.

02

Skill dispatch and validation queues

Agent routes into recon, exploit, and post-ex capabilities with severity, evidence, and validation structures appropriate to submission workflows.

03

Local artifact and session governance

Engagement outputs remain on operator-controlled hardware with export paths designed for authorized reporting, not cloud retention by default.

Operational pressure

Constraints the program addresses.

Model access revoked or filtered

Bring your own weights via Ollama: BugTrace Ultra, Huihui GLM-5.2, and other local models.

Chat-only UX with no operational memory

Single agent thread across six phases; findings accumulate instead of resetting.

YAML and template busywork

Findings-first canvas: assets, services, vulnerabilities, and evidence before templates.

Scattered tooling across the engagement

Agent panel routes natural language into offensive skills across recon, exploit, and post-ex.

Research areas

Platform components under active development.

Each surface is evaluated as part of a command post, not an isolated feature demo.

01

Tactical command layout

Operations sidebar, phase-aware canvas, agent chat rail, and scoped console, structured like a command post, not a single chat window.

02

Sovereign local inference

BYO Ollama with a model registry tuned for tooling, PoC generation, and uncensored multi-stage reasoning chains on operator-controlled hardware.

03

Agent-routed skills

Natural language routes into offensive capabilities: SQLi, XSS, Nuclei, CVE PoC, JWT attacks, code review, EDR evasion, shellcode, and kernel work.

04

Findings-first canvas

Live feed for assets, services, vulnerabilities, access, and evidence. Operators see what is happening, not just what the model said last.

05

Continuous engagement thread

One operation, one thread. Phase transitions change canvas context without discarding chat history, outputs, or accumulated findings.

06

Scoped operator console

Console, network, services, and terminal rails tied to the active engagement, structured for review and phase context, not disposable chat.

Engagement model

Phase-driven operations with continuous memory.

Canvas context transitions across phases. Agent sessions, findings, and outputs persist from scope through reporting.

PLAN

01

Planning

Scope, rules of engagement, target intel

Target URL, program notes, ROE checklist

RECON

02

Reconnaissance

Surface mapping, asset discovery, OSINT

Subdomains, hosts, passive intel

ENUM

03

Enumeration

Service fingerprinting, attack surface expansion

Ports, endpoints, auth flows

EXPLOIT

04

Exploitation

PoC development, bypass, initial access

Validation queue with severity and evidence

POST

05

Post-Exploitation

Privesc, lateral movement, persistence

Impact chain, blast radius, breadth

REPORT

06

Reporting

Artifacts, evidence, executive summary

Submission pack and severity rollup

Research focus

Active investigation threads.

The research question is not whether uncensored models exist. They do, in open weights and local runtimes. The question is how authorized operators route them into scoped workflows without losing review discipline, artifact retention, or the operational memory that separates a finished engagement from a disposable chat log.

  • 01Bug bounty workflows with local uncensored reasoning chains
  • 02Pentest phase orchestration and findings retention
  • 03Tactical red team skill routing and model selection
  • 04Artifact export, session governance, and operator review gates
  • 05Model capability mapping for tooling vs. deep reasoning roles

Model registry

Bring your own weights. Route by capability.

Tooling model

BugTraceAI CORE Ultra

27B Q6 · workstation tier

  • Nuclei templates
  • CVE PoC generation
  • Code security review
  • JWT tooling
  • Kernel exploit development

Uncensored MoE

Huihui GLM-5.2 Abliterated

754B MoE · server cluster tier

  • Multi-stage exploit chains
  • EDR evasion reasoning
  • Shellcode and binary development
  • Uncensored red-team planning
  • Long-context operation briefs

Program doctrine

Operating principles under evaluation.

01

Sovereignty is operational.

When model access can be revoked, filtered, or logged by a vendor, the operator who needs uncensored chains must own the inference surface.

02

Findings outlive chat.

An engagement is not a conversation. It is assets, services, vulns, and evidence that must survive every phase transition.

03

Routing beats prompting.

Natural language should dispatch into scoped offensive capabilities with phase-aware skill chips, not generic assistant behavior.

04

Authorization is the gate.

Yoru is built for authorized operators with explicit scope. Research without lawful authorization is out of scope for this project.

Test and evaluation

Evaluation against authorized operational scenarios.

Yoru is benchmarked through bug bounty, pentest, and red team scenarios: scope definition, multi-phase execution, agent-routed skill use, findings retention, and report assembly under operator review.

  • 01Engagement memory survives all phase transitions without loss of findings or session context
  • 02Agent-routed skills operate within defined scope with inspectable execution records
  • 03Local model routing supports both tooling and uncensored reasoning roles under operator control
  • 04Reporting outputs assemble from validated findings, not chat transcript alone

AI sovereignty

Key lessons on institutional sovereignty.

Yoru exists because offensive operators face the same sovereignty crisis institutions are confronting everywhere: filtered models, logged sessions, transferred data, and weights controlled by vendors who optimize for their gain. These key lessons from Palantir on the importance of AI sovereignty frame why local inference, retained artifacts, and owned weights are not ideological preferences. They are preconditions for institutional survival.

  1. 01

    Your AI sovereignty dictates your institution's future.

    Sovereignty is the precondition for choice. Relinquishing sovereignty transfers the future choices of your institution to others, who are likely to exploit it for their gain and your loss.

  2. 02

    Data retention is your treasure. Transfer it at your own peril.

    Your ability to win is dictated by your ability to recognize and use your unique edges, and you keep winning by compounding the underlying data to generate new insights. Transferring that data hands over access to your pre-existing winning plays and yields the means of production for new ones.

  3. 03

    Tokenmaxxing hijacks your value orientation.

    The pursuit of high token usage incentivizes disposable scripts over robust software, with the addictive feeling of false progress. There is a reason why those selling tokens refuse to charge based on value.

  4. 04

    Controlling your weights is controlling your fate.

    Weights are the distilled form of hard-won, accumulated institutional knowledge. If you let others control your weights, you are allowing them to migrate the alpha of your business to theirs.

  5. 05

    There is no contradiction between sovereignty and alpha.

    The architecture that maximally preserves sovereignty is one that enables institutions to own their tribal knowledge, and to compound it as alpha.

  6. 06

    Politicizing technical sovereignty helps your adversary.

    Techno-politicization is the wellspring of false sovereignty. Techno-politicization drives decisions that seem to reduce dependency, but ultimately limit agency, especially on the battlefield in the West.

  7. 07

    Real expertise is existential.

    Allowing politics or favoritism to determine your technical decisions rewards whoever is best at politics, not whoever is right. Listen to those closest to the problems, not those speaking most compellingly about them.

  8. 08

    Learn from institutions that are winning.

    Institutions facing existential threats do not have the luxury of making technical decisions based on political preferences.

  9. 09

    Only listen to those with a proven record of being right.

    A track record of correctness is the best and only signal for future correctness. Judging something as right or wrong based on who you like is exceedingly misguided.

Transition and access

Private alpha with research partner evaluation.

Yoru remains in private alpha while Stratir evaluates the command console with authorized operators and research partners. Transition follows demonstrated performance under scope discipline and operational review.

Forward deployed work taught Stratir that software has to survive contact with the operator's reality. Yoru applies that same doctrine to offensive security: sovereign models, continuous findings, and a command surface that respects the full engagement cycle.

Yoru is a Stratir research project for authorized offensive security work only. Use requires explicit authorization, defined scope, and compliance with applicable law. Stratir does not endorse unauthorized access, harassment, or unlawful intrusion.