https://h4ckr00t.com/tags/devhub/ Recent content in DevHub on H4CK R007 Hugo en-us Thu, 04 Jun 2026 22:20:04 +0300 https://h4ckr00t.com/posts/devhub/ Thu, 04 Jun 2026 22:20:04 +0300 https://h4ckr00t.com/posts/devhub/ HackTheBox Season 11 — DevHub (Medium / Linux) Machine Overview DevHub is a Medium-difficulty Linux machine on HackTheBox Season 11. It presents a internal developer platform running three services: a public-facing nginx web dashboard, an externally accessible MCPJam Inspector on a non-standard port, and two internal-only services (Jupyter Lab and a custom Flask API called OPSMCP) that are not directly reachable from the network. Table of Contents Machine Overview Reconnaissance Enumeration Vulnerability Discovery Initial Foothold — stdio RCE via MCPJam Inspector Post-Exploitation — Establishing Persistence Local Enumeration — Token Leak via Process List Lateral Movement — Jupyter WebSocket Code Execution as Analyst Privilege Escalation — OPSMCP Hidden Tool → Root SSH Key Flags Full Attack Chain Key Takeaways The attack chain is entirely modern and novel, built around the Model Context Protocol (MCP) — an open standard for connecting AI agents to external tools.