A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Sysmon - cmd line for non -local connections
List of Alerts via REST
Splunk License Consumption via _introspection
Search for disabled AD accounts that have been re-enabled
Weekday Web Traffic Summary in IIS
Hard Disk Usage and Information on Splunk Server
Microsoft AntiMalware Scan Completion
List Reports and Wrap the text
REST Call for Memory & CPU usage on Splunk Servers
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.