Shell Control Box 5 LTS – A New Level in Incident Investigation

Published on 20 April 2017

I’m proud to announce that the new, long term supported version of Balabit’s flagship, the Shell Control Box 5 LTS has arrived.  SCB is a turnkey user monitoring appliance that controls privileged access to IT systems, records activities in movie-like audit trails and prevents malicious actions. SCB is a key player in the privileged session management market which is increasingly driven by efficiency of security operations.  That’s why, with SCB 5 LTS , we focused on supporting enterprises in more efficient incident investigation and better utilizing their security investments.

Let’s see the key new features in a nutshell:

Improved interoperability for optimizing security investments

By checking out not just passwords, but SSH keys as well, SCB 5 LTS can provide an improved interoperability with leading password- and key management vendors, such as Lieberman®, Thycotic® or CyberArk®. Integration capabilities have been enhanced further as searching for SCB events and alerts in SIEM tools and configuring remote desktop (RDP) connections via REST API have become possible. With these features available, SCB adds further value in incident investigation and configuration management in any third-party systems which support REST-based integrations.
All in all, each of these interoperability improvements help enterprises leverage their existing security investments.

Next generation Desktop Player for easier audits and forensics

We launched a next-generation audit playback tool, the Balabit Desktop Player.  It can replay audit trail files that auditors have downloaded from the Shell Control Box. In contrast to the previous player which ran only on Windows, the new player supports multiple platforms – auditors can install and use it offline on both Windows and Linux operating systems (macOS support is in progress). The player offers smoother auditing and video watching experience than ever before. The customizable, clean interface provides a quick overview about the opened audit trail. Processing trails for replay has become faster and more reliable. The new tool makes security audit and incident investigation (i.e. forensics) faster and easier.

Redesigned GUI for better user experience

SCB’s graphical user interface has been completely updated, enabling SCB admins to do their daily job on a more ergonomic interface.

SCB’s new intuitive search interface

NetApp technology partnership

The new release supports the NetApp CIFS, the file system supported by NetApp, the leading storage manufacturer. Now audit trails can be natively backed up and archived to NetApp NAS storage appliances.  Balabit has become a member of the NetApp Alliance Program.

The SCB 5 LTS is a very important milestone for all of us. We’ve made several improvements under the hood to have a stable, reliable and future proof product.  We’ve extended our product capabilities to satisfy even the largest enterprises worldwide. Just two examples from our recent wins: SCB was chosen to be one of the technologies protecting global financial transactions at one of the largest bank on the world. And SCB has become the main entry point for third party operators at another bank on the Fortune 200 list. We are proud of those, but that’s not enough! SCB 5 LTS is a solid foundation that we’ll built on in the next years.

Try out the new release for free here.


The Shell Control Box™ and the Balabit™ names are trademarks of Balabit S.A. All other registered and unregistered trademarks used on the Site are the property of their respective owners.  Balabit is not an authorized partner of CyberArk®. The technical interoperability with CyberArk® is based on CyberArk® Enterprise Password Vault® ver.7.20. The interoperability has not been endorsed or authorized by CyberArk.


by Gabor Marosvar

share this article
Mitigate against privileged account risks
Get in touch

Recent Resources

The top IT Security trends to watch out for in 2018

With 2017 now done and dusted, it’s time to think ...

The key takeaways from 2017’s biggest breaches

Like many years before it, 2017 has seen a large ...

Why is IT Security winning battles, but losing the war…?

When a child goes near something hot, a parent will ...

“The [Balabit] solution’s strongest points are the privileged session management, recording and search, and applying policy filters to apps and commands typed by administrators on monitored sessions.”

– The Forrester Wave, Privileged Identity Management, Q3 2016, by Andras Cser