Detect webshells dropped on Microsoft Exchange servers exploited through "proxylogon" group of vulnerabilites (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065)
Why do you think that https://github.com/0x6d69636b/windows_hardening is a good alternative to exchange_webshell_detection