https://goshs.de/en/usage/collaboration/index.html goshs includes a set of server capabilities tailored for penetration testing, red team operations, and CTF challenges. These features let you receive and inspect traffic from targets — DNS queries, emails, SMB authentication attempts, and HTTP redirects — all from within the same binary. SMB Server — capture NTLM hashes and optionally crack them against a wordlist DNS Server — log all incoming DNS lookups and reply with a configurable IP SMTP Server — receive emails and attachments sent to your server Redirect Endpoint — serve HTTP 3xx redirects with custom headers Domain setup To receive real-world DNS callbacks and emails you need a registered domain with a few DNS records in place. The setup below uses Namecheap as an example, but the record types are the same with any registrar. Hugo en-US Mon, 13 Apr 2026 00:00:00 +0000 https://goshs.de/en/usage/collaboration/smb/index.html Mon, 13 Apr 2026 00:00:00 +0000 https://goshs.de/en/usage/collaboration/smb/index.html How to use goshs as an SMB server goshs can act as an SMB2 server. Any client that authenticates against it will trigger an NTLM authentication exchange, and goshs will capture and log the resulting NTLMv1/v2 hash. This is useful in penetration testing and CTF scenarios where you want to coerce a target into sending SMB credentials. Starting the SMB server goshs -smbThis starts an SMB listener on port 445 (default) using the share name goshs and domain GOSHS. https://goshs.de/en/usage/collaboration/dns/index.html Mon, 13 Apr 2026 00:00:00 +0000 https://goshs.de/en/usage/collaboration/dns/index.html How to use goshs as a DNS server goshs includes a lightweight DNS server that logs every incoming DNS query. This is useful in penetration testing and CTF scenarios where you want to detect out-of-band DNS interactions — for example when testing for SSRF, XXE, blind injection, or similar vulnerabilities. Tip To receive DNS callbacks from the internet you need a registered domain with an NS delegation record pointing to your server. See Domain setup for the full configuration. https://goshs.de/en/usage/collaboration/smtp/index.html Mon, 13 Apr 2026 00:00:00 +0000 https://goshs.de/en/usage/collaboration/smtp/index.html How to use goshs as an SMTP server goshs includes a lightweight SMTP server that receives and logs incoming emails including attachments. This is useful in penetration testing and CTF scenarios where you want to capture emails triggered by password resets, alert mechanisms, or other server-side email functionality. Tip To receive emails from the internet you need a registered domain with an A record pointing to your server. See Domain setup for the full configuration. https://goshs.de/en/usage/collaboration/redirect/index.html Mon, 13 Apr 2026 00:00:00 +0000 https://goshs.de/en/usage/collaboration/redirect/index.html How to use the redirect endpoint goshs can serve HTTP 3xx redirects via a special URL query parameter. This is useful in penetration testing and CTF scenarios where you want to redirect a victim’s browser or server-side request to an arbitrary target — for example when testing open-redirect vulnerabilities or chaining SSRF attacks. Triggering a redirect Append ?redirect to any goshs URL and provide the target via ?url=: http://<your-ip>:8000/?redirect&url=https://example.comgoshs will respond with an HTTP 302 redirect to https://example.com.