A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Fishies! Fun Query and Easter Egg
List of Forwarders that are Deployment Clients
Clearing of Windows Audit Logs
Count of Host added to Splunk by Month
Logon Types within a Windows Environment (with logon count)
List forwarders generating socket errors due to unkown SSL protocol
Top 25 Most Prevailing Vulnerabilities with Patches Available (Multiple OSs)- Qualys
Query to see incidents logged by correlation search in ES incident review dashboard
List all fields for an index
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.