Standard packet representation?

["John Cherbini" <cherbini () dakotacom net>]

Is the manner that snort represents a packet in the DB considered a
"standard" one?  Is there such a thing as a standard representation of a
packet in a DB?  I understand how to parse out the different sections of
a packet, identify them, etc..but I've noticed that different IDSes use
different methods of breaking all the data up.

Thanks!

John Cherbini

Attachment: smime.p7s
Description: