Package request: nimrm

[blue0x1]

Describe the package

Tool name:
nimrm

Homepage:
https://github.com/blue0x1/nimrm

Release:
https://github.com/blue0x1/nimrm/releases/tag/v1.0.0

Description:
nimrm is a native WinRM shell client written in Nim for authorized administration and security testing. It supports NTLM password authentication, NTLM pass-the-hash, Kerberos through
KRB5CCNAME, interactive PowerShell and CMD execution, file upload/download, recursive directory transfer, in-memory PowerShell script import, in-memory managed .NET assembly execution, AD/
domain context reporting, and logging/auditing posture checks.

License:
MIT

Author:
Chokri Hammedi (blue0x1)

Language:
Nim

Runtime dependencies:

• glibc
• krb5
• openssl

Build dependencies:

• git
• nim
• gcc

Suggested BlackArch group:
blackarch-windows

PKGBUILD:
I have a draft PKGBUILD available and can submit it in a pull request if preferred.

Legal notice:
nimrm is intended for lawful administration, security testing, and research on systems the user owns or is authorized to administer.

Source URL

https://github.com/blue0x1/nimrm

License

MIT

Have you considered submitting a pull request?

I prepared a draft PKGBUILD for nimrm, but I have not submitted a pull request yet because I would like confirmation from the BlackArch maintainers on the correct package group, dependency list, and whether the tool should build from the v1.0.0 GitHub tag or use release assets. The project has a simple Nim build system and an upstream MIT license. I can submit a PR using the official BlackArch PKGBUILD templates after maintainer guidance. That fits their field because you explain why you’re opening a request instead of a PR.

I confirm that this request is relevant for BlackArch

• I assert that this package request does not yet exist in an open pull request.
• I assert that this is not a duplicate of an existing request.
• I assert that the package is not available in BlackArch or official Arch Linux repositories.
• I have reviewed the PKGBUILD templates and understand that pull requests are preferred when possible.
• I assert that I have read the Arch Linux Code of Conduct and agree to abide by it.

[noraj]

I prepared a draft PKGBUILD for nimrm,

🥳

but I have not submitted a pull request yet because I would like confirmation from the BlackArch maintainers on the correct package group,

you can use

groups=('blackarch' 'blackarch-windows' 'blackarch-exploitation'
        'blackarch-backdoor')

dependency list,

those you listed in the issue seem good

and whether the tool should build from the v1.0.0 GitHub tag or use release assets.

Please build from latest git commit using this https://github.com/BlackArch/blackarch-pkgbuilds/blob/712ceab0248780ea33ed3f553d7be9266534b9bb/PKGBUILD-generic-git#L17-L26.

The project has a simple Nim build system and an upstream MIT license. I can submit a PR using the official BlackArch PKGBUILD templates after maintainer guidance. That fits their field because you explain why you’re opening a request instead of a PR.

If you're fluent in nim, a generic nim PKGBUILD template would be appreciated.

[blue0x1]

I prepared a draft PKGBUILD for nimrm,

🥳

but I have not submitted a pull request yet because I would like confirmation from the BlackArch maintainers on the correct package group,

you can use

groups=('blackarch' 'blackarch-windows' 'blackarch-exploitation'
'blackarch-backdoor')

dependency list,

those you listed in the issue seem good

and whether the tool should build from the v1.0.0 GitHub tag or use release assets.

Please build from latest git commit using this https://github.com/BlackArch/blackarch-pkgbuilds/blob/712ceab0248780ea33ed3f553d7be9266534b9bb/PKGBUILD-generic-git#L17-L26.

The project has a simple Nim build system and an upstream MIT license. I can submit a PR using the official BlackArch PKGBUILD templates after maintainer guidance. That fits their field because you explain why you’re opening a request instead of a PR.

If you're fluent in nim, a generic nim PKGBUILD template would be appreciated.

Thanks for picking this up!

Groups:

groups=('blackarch' 'blackarch-windows' 'blackarch-exploitation' 'blackarch-backdoor')

Dependencies:

• openssl (TLS support)
• krb5 (Kerberos/GSSAPI authentication)

Build dependencies:

• git
• nim

Build from: latest git commit, as suggested.

Here is the PKGBUILD following the generic-git template:

# This file is part of BlackArch Linux ( https://www.blackarch.org/ ).                                                                                                                      
# See COPYING for license details.                                                                                                                                                          

pkgname=nimrm                                                                                                                                                                               
pkgver=r0.0000000                                         
pkgrel=1
pkgdesc='Native WinRM shell client with NTLM, Kerberos, file transfers, in-memory operations, and multi-session support.'
arch=('x86_64' 'aarch64')                                                                                                                                                                   
groups=('blackarch' 'blackarch-windows' 'blackarch-exploitation' 'blackarch-backdoor')
url='https://github.com/blue0x1/nimrm'                                                                                                                                                      
license=('MIT')                                                                                                                                                                             
depends=('openssl' 'krb5')
makedepends=('git' 'nim')                                                                                                                                                                   
source=("git+https://github.com/blue0x1/nimrm.git")       
sha512sums=('SKIP')                                                                                                                                                                         

pkgver() {                                                                                                                                                                                  
 cd $pkgname                                             

 ( set -o pipefail
   git describe --long --tags --abbrev=7 2>/dev/null |
     sed 's/\([^-]*-g\)/r\1/;s/-/./g' ||
   printf "r%s.%s" "$(git rev-list --count HEAD)" \                                                                                                                                        
     "$(git rev-parse --short=7 HEAD)"
 )                                                                                                                                                                                         
}                                                         
                                                                                                                                                                                           
build() {
 cd $pkgname                                                                                                                                                                               
                                                         
 nim c -d:release -d:ssl --opt:speed -o:nimrm nimrm.nim
}

package() {
 cd $pkgname

 install -Dm 755 nimrm "$pkgdir/usr/bin/nimrm"                                                                                                                                             
 install -Dm 644 LICENSE "$pkgdir/usr/share/licenses/$pkgname/LICENSE"
 install -Dm 644 README.md "$pkgdir/usr/share/doc/$pkgname/README.md"                                                                                                                      
}                                                                                                                                                                                           

The build is a single nim c command with no complex build system. Let me know if you need anything adjusted.

[noraj]

I was testing the package but had two issues:

• Git tree blue0x1/nimrm#1
• Build error blue0x1/nimrm#2

# This file is part of BlackArch Linux ( https://www.blackarch.org/ ).
# See COPYING for license details.

pkgname=nimrm
pkgver=20.eec0bfb
pkgrel=1
pkgdesc='Native WinRM shell client with NTLM, Kerberos, file transfers, in-memory operations, and multi-session support.'
arch=('x86_64' 'aarch64')
groups=('blackarch' 'blackarch-windows' 'blackarch-exploitation' 'blackarch-backdoor')
url='https://github.com/blue0x1/nimrm'
license=('MIT')
depends=('openssl' 'krb5')
makedepends=('git' 'nim')
source=("git+https://github.com/blue0x1/nimrm.git")
sha512sums=('SKIP')

pkgver() {
  cd $pkgname

  ( set -o pipefail
    git describe --long --tags --abbrev=7 2>/dev/null |
      sed 's/\([^-]*-g\)/r\1/;s/-/./g' ||
    printf "%s.%s" "$(git rev-list --count HEAD)" \
      "$(git rev-parse --short=7 HEAD)"
  )
}

build() {
  cd $pkgname

  nim c -d:release -d:ssl --opt:speed -o:nimrm nimrm.nim
}

package() {
  cd $pkgname

  install -Dm 755 nimrm "$pkgdir/usr/bin/nimrm"
  install -Dm 644 LICENSE "$pkgdir/usr/share/licenses/$pkgname/LICENSE"
  install -Dm 644 README.md "$pkgdir/usr/share/doc/$pkgname/README.md"
}

[blue0x1]

> I was testing the package but had two issues:
> 
> * [Git tree blue0x1/nimrm#1](https://github.com/blue0x1/nimrm/issues/1)
> * [Build error blue0x1/nimrm#2](https://github.com/blue0x1/nimrm/issues/2)
> 
> # This file is part of BlackArch Linux ( https://www.blackarch.org/ ).
> # See COPYING for license details.
> 
> pkgname=nimrm
> pkgver=20.eec0bfb
> pkgrel=1
> pkgdesc='Native WinRM shell client with NTLM, Kerberos, file transfers, in-memory operations, and multi-session support.'
> arch=('x86_64' 'aarch64')
> groups=('blackarch' 'blackarch-windows' 'blackarch-exploitation' 'blackarch-backdoor')
> url='https://github.com/blue0x1/nimrm'
> license=('MIT')
> depends=('openssl' 'krb5')
> makedepends=('git' 'nim')
> source=("git+https://github.com/blue0x1/nimrm.git")
> sha512sums=('SKIP')
> 
> pkgver() {
>   cd $pkgname
> 
>   ( set -o pipefail
>     git describe --long --tags --abbrev=7 2>/dev/null |
>       sed 's/\([^-]*-g\)/r\1/;s/-/./g' ||
>     printf "%s.%s" "$(git rev-list --count HEAD)" \
>       "$(git rev-parse --short=7 HEAD)"
>   )
> }
> 
> build() {
>   cd $pkgname
> 
>   nim c -d:release -d:ssl --opt:speed -o:nimrm nimrm.nim
> }
> 
> package() {
>   cd $pkgname
> 
>   install -Dm 755 nimrm "$pkgdir/usr/bin/nimrm"
>   install -Dm 644 LICENSE "$pkgdir/usr/share/licenses/$pkgname/LICENSE"
>   install -Dm 644 README.md "$pkgdir/usr/share/doc/$pkgname/README.md"
> }

Thanks for testing and reporting both issues.

Both should be fixed now:

1. Git tree issue:
   The v1.0.0 tag commit was not reachable from any branch, so GitHub showed the detached commit warning. I created a v1.0.0 branch pointing to the same commit as the tag.

2. Build error:
   Fixed the Nim compile error in winrm.nim caused by the {200, 201, 202, 500} set literal. The status checks now use explicit integer comparisons.

I also verified the package build command successfully:

nim c -d:release -d:ssl --opt:speed -o:nimrm nimrm.nim

The fix is pushed to main as commit.