When you do a manual Live Update on NAV for Exchange and get Event ID: 35, do not be alarmed. This simply means that NAV will not update the definition files because it already has been updated. Restart the NAV for MS Exchange service then open up you NAV via Internet browser and check the definition dates.
Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.
Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.