HTB ACADEMY - Network Enumeration with Nmap

Hi everyone! I am stuck in the Service Enumeration module. “Enumerate all ports and their services. One of the services contains the flag you have to submit as the answer.” After performing a nmap scan with various tags (-A, -sV, -sU, -p-) I found port 80 open with a robots.txt containing a flag, which isn’t the right answer. Please help with a hint! (Is this doable with NMAP by itself?)

Type your comment> @sh0m3r said: > Hi everyone! > > I am stuck in the Service Enumeration module. > > “Enumerate all ports and their services. One of the services contains the flag you have to submit as the answer.” > > After performing a nmap scan with various tags (-A, -sV, -sU, -p-) I found port 80 open with a robots.txt containing a flag, which isn’t the right answer. > > Please help with a hint! > > (Is this doable with NMAP by itself?) Hi,You can test other tools (like network tool)in order to “listen” the flag Good luck.

nc or Ncat to that URL path will open it up. Or just use a web browser to the robots.txt

Try to use also other tools explained in the section. After that, wait a few seconds and the flag will appear.

Well, first you have to scan to identify all ports . Then run nc command each port service one by one, that worked for me.
Example:
nc -nv IP 80

Somehow I did not get it. When I try nc -nv <IP> 80 i do not get something useful. Is it intended to use other tools than mentioned in this section?