Scanner and PoC for CVE-2021-26855

Credit to GreyOrder for the PoC. Reuploading for convenience and because Microsoft took it down at least once :)

Example of usage for mass scanning:

shodan download --limit 12345 exchange "http.component:'outlook web+app'"

gzip -d exchange.json.gz

shodan parse exchange.json --fields=ip_str,port > ips.txt

python3 scan.py ips.txt