A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Expand JSON fields using spath
System Time Modifications in Windows
List of Legitimate Account Names in Windows
Visits by Days of the Week in IIS
Find duplicate events
rangemap command with single value string
Splunk SPL: Apache Response Codes by Client IP (Top 20)
SSL certificates about to expire
Retention Period in days per index
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.