A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Alert when ESCU updates detections
Memory Usage (MB) per Splunk Process Class
Top 10 most vulnerable systems (Tenable)
Top 5 License Consuming Hosts
Show all Indexes and Sourcetypes via REST
User Logon, Logoff, and Duration
Time between Account Creation and Account Deletion
Splunk Server Restart Duration
Timechart of the status of an Locked Out Account
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.