A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Splunk Admin Account Activity - Role Modifications
Apps Deployed from Deployment Server
Windows security daily domain activities
Weekend User Activity
Failed Versus Successful Logon Attempts
Available Memory in a Windows box
Accounts Deleted within 24 Hours of Creation
Find passwords in User_Name field
Count of Attackers on Juniper Devices
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.