A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Get list of concurrent users on a specific server
Listing incident review and the closing comments
Investigate by MAC, IP all VPN authentications through CISCO_ISE
Data model Acceleration Details
Top 5 Visiting Countries in IIS
Detect ShellShock Attempts in Apache Logs
Worldmap with unique visitors last 24 hours
Sysmon - Find Processes with Renamed Executables
List of Source Names and Frequency of Events
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.