I am aware that this question doesn't have a straight answer. But it is my paranoia that is going high lately.
I want to regularly check my routers for anything suspicious. All of them are running latest Long-term or Stable version of RouterOS.
What are those key areas that might eventually give me a clue that something fishy is going on?
1. Firewall
2. Scripts
3. Sheduler
4. Packages
5. Configuration
6. Logs
7. History
/please add more to this list/
Also, is there any way a router to be compromised and the RouterOS to be changed in a way that this will be absolutely hidden and only netinstall can fix it? Is there a way to check the integrity of the currently running RouterOS?
Thank you!