How Waratek protects Java applications
Waratek is an application security platform for Java. The Waratek Agent runs inside your JVM and blocks exploits, including zero-days, as they happen. Portal gives you a single place to manage agents, author ARMR rules, and triage events.
Attack attempt
- XML deserialization
- SQL query
- Runtime.exec
- File open
- And more
Agent intercepts the call
ARMR rules apply
- no tainted SQL queries
- no Runtime.exec on user args
- file reads within allowed folders
Blocked + event logged
Because the Agent sits inside the JVM, it sees the actual method calls with resolved arguments, not just bytes on the wire. That's how it catches attacks that look innocent at the network layer: Log4Shell-style JNDI injection, command-injection RCE, path-traversal file reads, deserialization gadgets.
Waratek Agent
Embeds in your Java application and blocks exploits, including zero-days, as they happen. A patented tainting engine removes false positives so security teams only see real events. See the Java Agent docs.
Waratek Portal
The management plane. Register applications, onboard agents, author rules, and triage events. Available as SaaS or Portal Dedicated for on-prem deployments.
ARMR
The rule language describing what to protect. ARMR rules, declarative or imperative, cover file I/O, DNS, input validation, open redirects, and more.
Get started
Three parallel paths: pick whichever matches what you're doing today.
Set up Portal
Register your applications, onboard agents, and manage security policies from one place. Use Portal (SaaS) or deploy Portal Dedicated on-prem.
Install the Agent
Embed the Waratek Agent in your JVM to block exploits at runtime. A patented tainting engine removes false positives so your security team only sees real events.
Author Security Rules
Describe what to protect using ARMR's declarative and imperative rule types. Portal's Rules Wizard walks you through the common patterns.