This is a repository to store Splunk code (SPL) and prototypes useful for building rules (correlation searches) and queries to find and hunt for malicious activity.
Feel free to contribute and share your feedbak in case you find it useful. For more Splunk (and Security) related stuff also check the following :