New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Review therubyracer gem #1478
Comments
Hello, consider https://github.com/discourse/mini_racer, too |
Bump |
|
I get a segmentation Fault on a raspberri pi with debian image: Linux raspberrypi 4.14.30-v7 Debian 9.4. This is caused by gem therubyracer. I tried with therubyracer 0.12.2 and 0.12.3. Tried with latest libv8 armv7 available (libv8-3.16.14.19-armv7l-linux) but nothing works. I am not able to start beef in this environment.
|
Thanks @RegH3x . Unfortunately your issue is likely related to therubyracer. I believe someone did get BeEF working on a Raspberry Pi many years ago. You could try rolling back to a 0.11.x version. You'll probably need to roll back the version of Apart from that, you're probably on your own. |
@bcoles You show me the way! I had to rollback until beef 4.5.0 to make it work. This is how to go in case you are on raspberri and having issue with 'therubyracer': Install Beef 0.4.5.0 and change line on 'eventmachine' to match latest updated version.
In this case uglifier is at version 2.2.1. |
@RegH3x I'm glad you got it working. However, that version of BeEF is very old. It won't identify modern browsers. It will still hook them, but identifying the correct browser and version is kind of important for a lot of functionality. |
It appears latest Kali 2018 and Parrot both support Ruby 2.5 and therubyracer |
Downgrading (and not upgrading) the "therubyracer" from 1.12.3 to 1.12.2 within Gemfile, worked for me in Kali Rolling with ruby 2.3.3 |
@skapyth sounds about right. This is why the use of this gem needs to be reviewed. It's a mess. Strange that you're using Ruby 2.3 though. Kali ships with Ruby 2.5.1. |
Bump |
OK, as far as I can see, beef only needs therubyracer to provide a JS runtime for execjs. Why don't you just remove it and rely on the nodejs runtime (just having nodejs installed on the system is sufficient for execjs to automagically use it)? |
The gemfile is locked to Ruby 2.3 |
@ignisf the |
Review the use of therubyracer gem. This gem is required to use the v8 JavaScript engine on Linux.
The latest version breaks BeEF on Kali Rolling, but not Kali 1.6.
Using an outdated version of the gem reportedly breaks BeEF on other systems.
At the moment, the gem is only installed if the system is Linux.
The use of this gem needs to be reviewed. This may require replacing the gem with something else.
Given that BeEF no longer supports Windows, and requires nodejs for the autorun rule engine, the libv8 gem may be a viable alternative.
The text was updated successfully, but these errors were encountered: