# Blue Teaming

- [Network Miner](/home/notes/blue-teaming/network-miner.md)
- [Wireshark](/home/notes/blue-teaming/wireshark.md)
- [Traffic Analysis](/home/notes/blue-teaming/wireshark/traffic-analysis.md)
- [ARP Poisoning](/home/notes/blue-teaming/wireshark/arp-poisoning.md)
- [Host Identification](/home/notes/blue-teaming/wireshark/host-identification.md): Using DHCP, NetBios and Kerberos
- [Detecting Data Exfiltration](/home/notes/blue-teaming/detecting-data-exfiltration.md)
- [DNS Tunneling](/home/notes/blue-teaming/detecting-data-exfiltration/dns-tunneling.md)
- [Analysing network captures with Wireshark](/home/notes/blue-teaming/detecting-data-exfiltration/dns-tunneling/analysing-network-captures-with-wireshark.md)
- [Investigating using Splunk](/home/notes/blue-teaming/detecting-data-exfiltration/dns-tunneling/investigating-using-splunk.md)
- [Data Exfil using FTP](/home/notes/blue-teaming/detecting-data-exfiltration/data-exfil-using-ftp.md)
- [Analysing network captures](/home/notes/blue-teaming/detecting-data-exfiltration/data-exfil-using-ftp/analysing-network-captures.md)
- [Data Exfil using HTTP](/home/notes/blue-teaming/detecting-data-exfiltration/data-exfil-using-http.md)
- [Investigating in Splunk](/home/notes/blue-teaming/detecting-data-exfiltration/data-exfil-using-http/investigating-in-splunk.md)
- [Packet capture analysis](/home/notes/blue-teaming/detecting-data-exfiltration/data-exfil-using-http/packet-capture-analysis.md)
- [Data Exfil using ICMP](/home/notes/blue-teaming/detecting-data-exfiltration/data-exfil-using-icmp.md)
- [Analysing network packets](/home/notes/blue-teaming/detecting-data-exfiltration/data-exfil-using-icmp/analysing-network-packets.md)
- [Windows Monitoring](/home/notes/blue-teaming/windows-monitoring.md)
- [Linux Security Monitoring](/home/notes/blue-teaming/linux-security-monitoring.md)
- [Logging](/home/notes/blue-teaming/linux-security-monitoring/logging.md)
- [Runtime Monitoring](/home/notes/blue-teaming/linux-security-monitoring/runtime-monitoring.md)
- [Detecting DDOS Attacks](/home/notes/blue-teaming/detecting-ddos-attacks.md): Notes from the TryHackMe Room