A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
port scan attack (by juniper)
Fishies! Fun Query and Easter Egg
Current vulnerabilities from tenable.io
Median Duration of a Session within an IIS Web Environment
Track Remediation Progress by OS - Qualys
Weekday Web Traffic Summary in IIS
Splunk Apps added to an instance
Splunk Admin Account Activity - Account Modifications
Show all successful splunk configuration changes by user
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.