{ lib , asn1crypto , buildPythonPackage , cryptography , dnspython , dsinternals , fetchFromGitHub , impacket , ldap3 , pyasn1 , pycryptodome , pyopenssl , pythonOlder , requests , requests-ntlm , unicrypto }: buildPythonPackage rec { pname = "certipy-ad"; version = "4.8.2"; format = "setuptools"; disabled = pythonOlder "3.7"; src = fetchFromGitHub { owner = "ly4k"; repo = "Certipy"; rev = "refs/tags/${version}"; hash = "sha256-Era5iNLJkZIRvN/p3BiD/eDiDQme24G65VSG97tuEOQ="; }; postPatch = '' # pin does not apply because our ldap3 contains a patch to fix pyasn1 compability substituteInPlace setup.py \ --replace "pyasn1==0.4.8" "pyasn1" ''; propagatedBuildInputs = [ asn1crypto cryptography dnspython dsinternals impacket ldap3 pyasn1 pycryptodome pyopenssl requests requests-ntlm unicrypto ]; # Project has no tests doCheck = false; pythonImportsCheck = [ "certipy" ]; meta = with lib; { description = "Library and CLI tool to enumerate and abuse misconfigurations in Active Directory Certificate Services"; homepage = "https://github.com/ly4k/Certipy"; changelog = "https://github.com/ly4k/Certipy/releases/tag/${version}"; license = with licenses; [ mit ]; maintainers = with maintainers; [ fab ]; }; }