A community-built SPL + dashboard repository

GoSplunk

Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.

Sample SPL

index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count

128

SPL searches

Hand-picked SPL searches from across the library.

Browse all

spl

_internal

List of Universal Forwarders with Version

▲ 18 ▼ 2

by SplunkNinja

spl

Networking

Groundspeed Violation/Improbable Access

▲ 6 ▼ 0

by riparino

spl

Perfmon:CPU Load

CPU Thresholds, Warnings, and Risk Scoring

▲ 3 ▼ 0

by SplunkNinja

spl

_internal

List All Hosts Associated with All Indexes

▲ 21 ▼ 2

by SplunkNinja

spl

REST

List of Props.conf Extractions

▲ 2 ▼ 0

by ItsJohnLocke

spl

_internal

Identifying Hosts not sending data for more than 6 hours

▲ 5 ▼ 0

by vr2312

spl

REST

Hard Disk Usage and Information on Splunk Server

▲ 13 ▼ 1

by SplunkNinja

spl

Uncategorized

Rename _time field in a TimeChart

▲ 6 ▼ 1

by SplunkNinja

spl

Uncategorized

Sysmon - Find Processes with Renamed Executables

▲ 0 ▼ 0

by jwalzer

spl

_internal

Count of Splunk Errors Per Host

▲ 4 ▼ 1

by ItsJohnLocke

Dashboards

Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.

Browse all

dashboard

Dashboards

ESCU Update Tracking

▲ 0 ▼ 0

by AzJimbo

dashboard

Dashboards

exploremydata - data explorer

▲ 14 ▼ 0

by AzJimbo

dashboard

Dashboards

Windows Logon Dashboard

▲ 13 ▼ 2

by thall

dashboard

Dashboards

Truncated Data Issues

▲ 2 ▼ 0

by manderso

dashboard

Dashboards

Bucket Status Dashboard

▲ 5 ▼ 0

by manderso

dashboard

Dashboards

Windows RDP sessions

▲ 18 ▼ 3

by thall

dashboard

Dashboards

Simple File Integrity Monitoring Management Dashboard

▲ 15 ▼ 3

by splunkzilla

dashboard

Dashboards

ProofPoint TAP Dashboard

▲ 4 ▼ 5

by riparino

dashboard

_internal

Top 10 Accessed Dashboards

▲ 1 ▼ 1

by Azeemering

dashboard

Dashboards

Apache Traffic Dashboard

▲ 12 ▼ 0

by SplunkNinja