Snort Design

1998 - first commit
Packet sniffing network intrusion detection system (Payload and Header)
Libpcap-based sniffing interface 
Rules-based detection engine
Multiple output options
decoded logs, tcpdump formatted logs	
real-time alerting to syslog, file, winpopup