Tech Log Entry — Kali Linux Live USB (Tool Installation and Zeek Configuration)
Tech Log Entry — Kali Linux Live USB (Tool Installation and Zeek Configuration) Part 2 of 2: Network Analysis Tool Installation, Zeek Deployment, and JSON Log Configuration Date: June 30, 2026 Summary Following successful encrypted persistence boot (documented in Part 1), a full suite of network analysis tools was installed into the persistence partition of the Kali Linux 2026.2 Live USB. Tools installed include Wireshark, tshark, tcpdump, Suricata, nmap, netdiscover, tcpflow, jq, termshark (manual binary install), and Zeek (via official Zeek apt repository with symlink PATH resolution). Zeek was deployed via zeekctl, confirmed running with active log output, and reconfigured to output JSON-format logs for use with jq. All tools were confirmed present and operational across a full reboot cycle, verifying persistence is functioning correctly. Background and Context This entry continues directly from Part 1. The goal for Part 2 was to populate the 24.1 GB encrypted persistence partition ...