Warn user if a file/permission is being modified during new session

Author: sinn3r

modules/exploits/linux/http/symantec_web_gateway_file_upload.rb

@@ -70,6 +70,7 @@ def check
 	end
 
 	def on_new_session(client)
+		print_warning("Deleting temp.php")
 		if client.type == "meterpreter"
 			client.core.use("stdapi") if not client.ext.aliases.include?("stdapi")
 			client.fs.file.rm("temp.php")

modules/exploits/linux/http/webid_converter.rb

@@ -109,7 +109,7 @@ def on_new_session(client)
 		res = client.fs.file.search(nil, "currencies.php", true, -1)
 		res.each do |hit|
 			filename = "#{hit['path']}/#{hit['name']}"
-			print_status("#{peer} - Restoring #{filename}")
+			print_warning("#{peer} - Restoring #{filename}")
 			client.fs.file.rm(filename)
 			fd = client.fs.file.new(filename, "wb")
 			fd.write(currencies_php)

modules/exploits/multi/http/qdpm_upload_exec.rb

@@ -94,7 +94,7 @@ def on_new_session(cli)
 		end
 
 		@clean_files.each do |f|
-			print_status("#{@peer} - Removing: #{f}")
+			print_warning("#{@peer} - Removing: #{f}")
 			begin
 				if cli.type == 'meterpreter'
 					cli.fs.file.rm(f)

modules/exploits/multi/http/struts_code_exec.rb

@@ -130,7 +130,7 @@ def linux_stager
 
 	def on_new_session(client)
 		if target['Platform'] == 'linux'
-			print_status("Deleting #{@payload_exe} payload file")
+			print_warning("Deleting #{@payload_exe} payload file")
 			execute_command("/bin/sh@-c@rm #{@payload_exe}")
 		else
 			print_status("Windows does not allow running executables to be deleted")

modules/exploits/multi/http/struts_code_exec_exception_delegator.rb

@@ -182,7 +182,7 @@ def on_new_session(client)
 			return
 		end
 
-		print_status("Deleting the #{@payload_exe} file")
+		print_warning("Deleting the #{@payload_exe} file")
 		client.fs.file.rm(@payload_exe)
 
 	end

modules/exploits/multi/http/testlink_upload_exec.rb

@@ -140,6 +140,7 @@ def login(base, user, pass)
 	end
 
 	def on_new_session(client)
+		print_warning("Deleting #{@token}.php")
 		if client.type == "meterpreter"
 			client.core.use("stdapi") if not client.ext.aliases.include?("stdapi")
 			client.fs.file.rm("#{@token}.php")

modules/exploits/multi/http/webpagetest_upload_exec.rb

@@ -80,8 +80,14 @@ def on_new_session(cli)
 			return
 		end
 		cli.core.use("stdapi") if not cli.ext.aliases.include?("stdapi")
-		cli.fs.file.rm(@target_path)
-		print_status("#{@target_path} removed")
+
+		begin
+			print_warning("Deleting: #{@target_path}")
+			cli.fs.file.rm(@target_path)
+			print_good("#{@target_path} removed")
+		rescue
+			print_error("Unable to delete: #{@target_path}")
+		end
 	end
 
 

modules/exploits/unix/webapp/sugarcrm_unserialize_exec.rb

@@ -65,6 +65,7 @@ def on_new_session(client)
 			f = "pathCache.php"
 			client.core.use("stdapi") if not client.ext.aliases.include?("stdapi")
 			begin
+				print_warning("#{@peer} - Deleting #{f}")
 				client.fs.file.rm(f)
 				print_good("#{@peer} - #{f} removed to stay ninja")
 			rescue

modules/exploits/unix/webapp/tikiwiki_unserialize_exec.rb

@@ -69,6 +69,7 @@ def on_new_session(client)
 		if client.type == "meterpreter"
 			client.core.use("stdapi") if not client.ext.aliases.include?("stdapi")
 			begin
+				print_warning("#{@peer} - Deleting #{@upload_php}")
 				client.fs.file.rm(@upload_php)
 				print_good("#{@peer} - #{@upload_php} removed to stay ninja")
 			rescue

modules/exploits/unix/webapp/xoda_file_upload.rb

@@ -74,6 +74,7 @@ def check
 	end
 
 	def on_new_session(client)
+		print_warning("Deleting #{@payload_name}")
 		if client.type == "meterpreter"
 			client.core.use("stdapi") if not client.ext.aliases.include?("stdapi")
 			client.fs.file.rm(@payload_name)