red team usage

ningen-shikkaku is operator-side tooling for an authorized engagement: it makes your own engagement secrets — the credentials, tokens, and keys issued to you for the work — ephemeral and bound to your session, on your own operator host.

The problem it solves for an operator

During an engagement your operator box accumulates secrets in long-running processes: a C2 operator console, a tool runner, a notebook holding a borrowed credential. If that box is lost, imaged, or crash-dumped, those secrets are recoverable from memory or swap. ningen-shikkaku ties their lifetime to your session and destroys them deterministically when it ends.

Pattern: session-bound credential

# hold the engagement key in locked, non-dumpable RAM, armed, with a short grace
dazai daemon --arm --grace 3 --ping-timeout 20

# from your operator shell, hold the heartbeat
dazai client --interval 5

Close the shell, lose the SSH session, or trip the timeout → the key is wiped and the daemon dies within the grace window. No swap copy, no core dump, nothing to seize.

Pattern: protect the whole tool stack

Register every engagement process so they all die together when the session ends — see MCP agent integration. A registered PID is SIGKILLed by the daemon on trigger, so a forgotten tool process can't outlive the engagement.

Pattern: one-shot credential handoff

When a tool needs a secret exactly once, serve it with motokano and let it self-destruct:

motokano --calls 1 --session \
  --tool 'name=token,kind=static,value=<engagement-token>' --arm

The value lives in a locked buffer, is served once, then wiped — and the server also dies if the daemon it's linked to dies.