DFIR-IRIS Alert/Case Counts and Enrichment triggers

[chadhardcastle]

Hey there,

Feature Requests:

• Case and Alert counts from DFIR-IRIS in the SOC blade.
• Ability to execute enrichment modules from Alert/Case's within CoPilot

Possible Bug: On a separate note I noticed that the ascending vs. descending filter doesn't seem to update anything when doing a search of the alerts. This could potentially be due to the fact I have almost 15000 alerts as part of my testing. I increased the CPU and memory resources to ensure it wasn't a bottleneck in my cluster.

Thanks again, great product so far!

[taylorwalton]

no longer leveraging dfir-iris