Monkit is an open-source system that allows efficient network monitoring and intrusion detection on standard off-the-shelf hardware. It offers a webinterface for easy configuration and to display results of the IDS Snort, event correlation (Prism++) and flow information (Nfsen). In the background, the monitoring framework Vermont is used to distribute the network data.

Some screenshots

(more available here)

Some features

intrusion detection using Snort with the latest EmergingThreats signatures
correlation engine Prism++ including a web interface for displaying IDS events
Netflow/IPFIX network traffic aggregation with Vermont
flow data storage and analysis with web interface using Nfsen
fast packet capturing using PF_RING
highly configurable and extendable for other data sources (Netflow, IPFIX, PSAMP)
based on Ubuntu 10.04 LTS
easy to try (VM image available)
easy to install (ISO-image with installer available)