A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
List All Splunk Users & Associated Roles
List of all enabled correlation rules that generate a notable
Check your strftime is correct in the props.conf
Qualys Top 10 Vulnerabilities by Severity
List of Extractions in Transforms.conf
Median Duration of a Session within an IIS Web Environment
Accounts Deleted within 24 Hours of Creation
Identifying Hosts not sending data for more than 6 hours
Find queues that are nearly full
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.