A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Search for disabled AD accounts that have been re-enabled
Regex Extraction for WordPress Version from Apache Logs
Successful File Access Attempts and Filename Accessed
Number of Hosts the Root Account was Detected on
Get list of concurrent users on a specific server
Splunk User Search Activity
List of Legitimate Account Names in Windows
List of Props.conf Extractions
Convert Seconds to Hours Minutes Seconds HHMMSS
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.