Hi, it is a bit frustrating, but I got stuck at very first step. It is unclear if we must target .local or .com domain.
We read “Let’s move into internal enumeration and begin analyzing the internal INLANEFREIGHT.LOCAL domain passively”, so my assumption is that we should connect to our attack box and run discovery from there. I started pwnbox, but I have no interfaces in 172.16.5.0/23 network (which should be our target network according to previous chapter). And I can’t reach any IPs in that range from my pwnbox.
But the question says: "While looking at inlanefreights public records; A flag can be seen. Find the flag and submit it. ( format == HTB{****} )"
So is the question about inlanefreight.com or inlanefreight.local?
Very confused. Please help thankyou!