A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Successful File Access Attempts and Filename Accessed
List of Source Names and Frequency of Events
List permissions for Users, roles, allowed indexes and indexes searched by default
Get unexpected shutdown date with downtime duration
IIS Response Time
Create a lookup with random test ip's
Splunk License Usage Over the Last 30 Days
Timechart of the status of an Locked Out Account
Splunk SPL: Apache Unique Visitors by Day
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.