https://goshs.de/en/usage/collaboration/smb/index.html How to use goshs as an SMB server goshs can act as an SMB2 server. Any client that authenticates against it will trigger an NTLM authentication exchange, and goshs will capture and log the resulting NTLMv1/v2 hash. This is useful in penetration testing and CTF scenarios where you want to coerce a target into sending SMB credentials. Starting the SMB server goshs -smbThis starts an SMB listener on port 445 (default) using the share name goshs and domain GOSHS. Hugo en-US