Instalacion de Zeek desde repositorio (configuracion por defecto):
Referencia: https://www.atlantic.net/dedicated-server-hosting/how-to-install-zeek-network-security-monitoring-tool-in-ubuntu-20-04/
Referencia: https://software.opensuse.org/download.html?project=security%3Azeek&package=zeek
Referencia: https://kifarunix.com/install-zeek-on-debian-11/
Referencia para ELK:
- https://kifarunix.com/install-elk-stack-on-debian-11/
- https://kifarunix.com/install-and-configure-logstash-7-on-ubuntu-18-debian-9-8/#configurelogstash
- https://kifarunix.com/install-elastic-stack-7-on-ubuntu-18-04-debian-9-8/#proxykibanawithnginx
- https://www.elastic.co/guide/en/elasticsearch///reference/6.8/get-started-enable-security.html
- https://www.elastic.co/es/blog/collecting-and-analyzing-zeek-data-with-elastic-security
- https://www.elastic.co/es/blog/getting-started-with-elasticsearch-security
Referencia filebeat:
- https://stackoverflow.com/questions/51682649/filebeat-configuration-test-with-output