This repository contains walkthroughs and/or write-ups of the levels for the InfoSec Institute CTF 2015.
http://ctf.infosecinstitute.com/
It's not obvious from the introductory documentation, but it appears the flags for these levels are all in the format of: infosec_flagis_XXX where XXX is a string.
These write-ups were all written by Greg Prosser, https://github.com/gregnprosser .
- Level 1 (original link)
- Level 2 (original link)
- Level 3 (original link)
- Level 4 (original link)
- Level 5 (original link)
- Level 6 (original link)
- Level 7 (original link)
- Level 8 (original link)
- Level 9 (original link)
- Level 10 (original link)
- Level 11 (original link)
- Level 12 (original link)
- Level 13 (original link)
- Level 14 (original link)
- Level 15 (original link)
It's perhaps worth metioning that since Level 15 is an arbitrary command injection, it is trivial to use various commands to extract the entire set of PHP files for previous levels - in case that's interesting.
This can also be used to solve Level 9 without solving the actual challenge: the username and password are stored within the source code.