A community-built SPL + dashboard repository
GoSplunk
Discover field-tested SPL searches and full dashboard XML you can copy straight into Splunk.
Sample SPL
index=security EventCode=4625
| stats count by Account_Name, ComputerName
| sort - count 128
SPL searches
Hand-picked SPL searches from across the library.
Failed Versus Successful Logon Attempts
Search Common EventCodes (EventID's) for Suspicious Behavior
Identify all saved searches that use a specific keyword
Reflected DDoS Attack
Repeated Unsuccessful Logon Attempts in Linux
Memory Usage and Information on Splunk Server
Successful Linux Logons by Username
Datamodel Search Performance
Baselining Dashboard
Dashboards
Full XML dashboards with panels, inputs, and drilldowns. Copy once, ship instantly.