A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
CrowdStrike Audit Event Correlation
List of Extractions in Transforms.conf
Failed Windows Remote Desktop Connection Attempt
List of index available to your role
Failed Login to OSX
Identifying Hosts not sending data for more than 6 hours
Find unused dashboards
Monitor File Shares being Accessed in Windows
Who's Using Splunk?
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.