- Change the API key in shodan-query.py
- Run shodan-query.py to grab results (You can change the query in the file)
- Run check.py to check if Outlook servers are vulnerable to ProxyNotShell
Made by Fawaz
http.favicon.hash:1768726119 (Shodan)
http.component:"outlook web app" (Shodan)
http.component:"outlook web app" ssl:"hybrid" (Shodan)
tag.name:"microsoft_exchange" prot7:http http.status_code:200 (Netlas.io)
same_service(http://services.http.response.favicons.name: */owa/auth/* and services.http.response.html_title={"Outlook Web App", "Outlook"}) (Censys)