## https://sploitus.com/exploit?id=A2A4BE91-612B-5E26-81F9-B4AD4AE60ACD
This repository is an exploit toolkit for a critical vulnerability in Mikrotik RouterOS Winbox. The vulnerability is present in all versions from 6.29 to 6.42. The toolkit includes several scripts and tools to exploit the vulnerability and extract user credentials.
The PoC.py script is the main exploit script that sends a specially crafted packet to the Winbox service on the target Mikrotik device. The packet is designed to bypass authentication and allow the attacker to access the device's configuration and extract user credentials.
The extract_user.py script is used to extract user credentials from the response received from the target device. It decrypts the password using a custom decryption algorithm and returns the username and password.
The kerma.sh and multi.sh scripts are used to automate the exploitation process. The kerma.sh script is used to scan a range of IP addresses and identify vulnerable devices, while the multi.sh script is used to exploit multiple devices at once.
The event.sh script is used to continuously scan for new devices and exploit them as they are discovered.
The vulnerability is a critical one, as it allows an attacker to gain access to the device's configuration and extract user credentials without authentication. The mitigation techniques recommended by the authors of the exploit toolkit include updating the RouterOS to the latest version, disabling Win