A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Escalation of Privileges in a Windows Environment by User
REST Call for Memory & CPU usage on Splunk Servers
Get unexpected shutdown date with downtime duration
Find where actual hostnames don't match the host from the Universal Forwarder
SSL certificates about to expire
All indexes not explicitly granted to a role
User Activity in DBConnect
Character Count Per Event
Find queues that are nearly full
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.