## https://sploitus.com/exploit?id=0ACA3911-F4F3-5190-9F83-9748B7BA5C22
This is a PoC exploit for CVE-2018-14847 targeting RouterOS-based routers. The tool, named Meris RouterOS Checker, checks a list of IP addresses to validate if they were infected with Meris. It uses the RouterOS API, SSH, and WinBox to connect to the routers and attempt to exploit the vulnerability. The tool supports RouterOS API, SSH, and WinBox (tested for <= 6.42) and uses modified versions of the bytheway tool for WinBox operations and the RouterOS API module for RouterOS API operations. The tool outputs an exploited.csv file with a table of results for each provided IP address. The tool also attempts to list scheduler scripts and check if they contain IoCs listed in indicators.txt. The tool requires either an --ip or --ipfile option, and optionally, the --threads option can be used to tune the number of threads.