Waratek is a pioneer in the next generation of application security solutions known as Runtime Application Self-Protection or RASP. Based on virtualization, Waratek’s application security platform is highly accurate, easy to install, simple to operate, and does not slow application performance. The Waratek platform provides protection against known and unknown vulnerabilities in current and legacy software as well as offers operational improvements that help teams rapidly apply critical patch updates for immediate protection – all without code changes, tuning or additional instrumentation.


Waratek offers an application security platform for Java that protects the full application stack from known and unknown attacks (Zero Day) and improves app operations using a secure virtual container.

  • Defends against known and unknown attacks (Zero Day) in the full software stack, including the business logic, third party component and platform API/OS layers
  • Out-of-the-box configuration protects against 90% of most common attacks. (100% coverage of OWASP Top Ten available in Q1 2017)
  • Immediate application of critical patch updates without taking an application out of production (virtual patching) or code changes
  • Protects applications running on legacy Java platforms with no code changes
  • Automated application hardening reduces attack surface by at least 85% by profiling app operations and turning off un-needed APIs
  • Installs in less than 15 minutes per instance using a plug-in (.JAR file)
  • Produces no false positives
  • Application performance overhead of <5%
  • Provides detailed forensic data that can be reported to existing SIEM or via management console
  • Does not require code changes for installation
  • Does not require tuning
  • No prior knowledge of the application is required for installation or operation
  • Does not require additional hardware, instruments, appliances or filters
  • Reduces time and resources spent on patch management and code updates/rewriting legacy applicatons



GSA Schedule Contracts

GSA Schedule 70

GSA Schedule 70 GSA Schedule No. GS-35F-0119Y Term: December 20, 2011- December 19, 2021

State & Local Contracts

City of Seattle Contract

Contract #0000003265 Term: December 19, 2021


Contract # CMAS 3-12-70-2247E Term: through March 31, 2022

Ohio State Contract- 534354

Contract # 534354 Term: December 19, 2021


Contract Number: UVA1482501 Term: May 2, 2014– December 19, 2021


Latest News

Applications today are generally protected by ineffective Web Application Firewalls (WAFs) and ...
As long as there has been a commercial internet, cybersecurity has largely been predicated on ...
DUBLIN and ATLANTA – Jan. 25, 2016 – Waratek, a virtualization-based application ...



Runtime Application Self-Protection (RASP) is a transformational application security technology securing an application’s runtime. Waratek’s solution detects and prevents realtime attacks with zero false positives, doesn’t slow your applications’ performance, and increases the visibility in...

Cybersecurity spending will reach $170 billion by 2020 according to Gartner, based on the need to respond to non-stop efforts to steal customer data and other valuable information assets. Waratek delivers state-of-the-art security and operational efficiencies through Runtime Application Self Protect...

Runtime Application Self Protection (RASP) is a new approach to application security that not only promises to redress the deficiencies of preceding security implementations, such as Web Application Firewalls (WAF), but which also introduces a new set of capabilities that together represent a paradi...

With cyber-attacks and security breaches continuing to rise, Waratek offers a highly effective and transformational approach to protecting your data and applications.