A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
List Deployment Apps and the associated serverClass
Hard Disk Usage and Information on Splunk Server
Query to see incidents logged by correlation search in ES incident review dashboard
Successful Logons - Windows
rangemap command with single value string
Basic binary conversion for IPv4 Mask
Top Offending SSH Failure by Source IP
Convert non timestamp time to Epoch
Total Hits on Least Active Day in IIS
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.