The "Custom search" feature of www.eventid.net provides you with customized search expression for a specific event. For example, event id 1000 from source Userenv has a large number of variants (as of March 25, 2018 we have 39 but there could be many more). Searching the Internet for "event 1000 Userenv" will return links to all the variants instead of the one you are looking for.
It will return over 177,000 hits!
However, the www.eventid.net "Search keywords" feature helps narrowing down the scope of the search significantly. For example, for this event:
the search keywords would be:
This search only returns 281 hits.
Our consultants will keep adding customized search keywords for the events in our database so you will save even more time in the troubleshooting process.
Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.
Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.