Scanner and PoC for CVE-2021-26855
Credit to GreyOrder for the PoC. Reuploading for convenience and because Microsoft took it down at least once :)
Example of usage for mass scanning:
shodan download --limit 12345 exchange "http.component:'outlook web+app'"
gzip -d exchange.json.gz
shodan parse exchange.json --fields=ip_str,port > ips.txt
python3 scan.py ips.txt