PCAPBleeding
Author : julien - Difficulty : medium
Finally, somebody has read our 2014 log files. We think an attack
occurred on our HTTPS server but we don't know if they succeed in
stealing valuable
information. Some confidential data pass through this SSL channels so we
hope it's not broken :~
The flag format is INS={some random string here}.

Original writeup (https://github.com/hexpresso/WU-2016/tree/master/insomnihack-ctf-2016/crypto/pcapbleeding).