A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Get list of concurrent users on a specific server
Monitor File Shares being Accessed in Windows
Worldmap with unique visitors last 24 hours
Port usage for opsec sourcetype
List All Hosts Associated with All Indexes
Available Disk Space on a Windows Box
Detect ShellShock Attempts in Apache Logs
Top exploitable vulnerabilities (tenable)
Windows Time Change
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.