A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
identify knowledge objects, permissions and extractions
F5 BigIP Brute Force and Session Abuse
Remediation Tracking Trend - Qualys
Weekend User Activity
Exclude single event type from logs
Successful Logons - Windows
Qualys Hosts not Scanned in 30 days+
Time between rights granted and rights revoked
Track Remediation Progress by OS - Qualys
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.