Using Compiler Techniques Not Traditional Approaches Means 100% Accuracy
DUBLIN and ATLANTA – October 3, 2018 – Waratek, the compiler-based application security company, has announced a new, stand-alone lightweight runtime agent that both blocks and detects attacks using a deterministic approach to safeguard web applications from known and Zero Day attacks without generating false positives.
Waratek Secure, a lightweight plug-in agent for Java- and .NET-based applications, installs within minutes and does not require routine tuning, downtime, or source code changes to deploy a new rule. Waratek Secure has a near zero performance impact on applications and generates no false positives, avoiding the most common complaints about application security tools.
“As the world becomes increasingly driven by software that includes inherent vulnerabilities, organizations of all sizes need to make their applications more secure from flaws that can halt business operations and cause severe monetary damages,” said Waratek Founder and Chief Technology Officer John Matthew Holt. “Waratek Secure’s unique approach allows organizations to improve their application protection without sacrificing accuracy or speed while reducing complexity.”
Traditional application security approaches like Web Application Firewalls (WAF) rely on heuristics to make educated guesses about known attacks, which leads to false positives. WAFs and other tools that rely on WAF-like techniques also tend to dramatically slow application performance as well as require time-consuming and labor-intensive tuning to stay effective as application updates are made and new attacks emerge.
Waratek Secure offers 100% accuracy against exploits in the OWASP Top Ten, SANS Top 25, and Zero Day attacks without negatively impacting application speed. The new offering allows security teams to easily add, set, and forget protection levels for single or multiple applications with no routine tuning. Waratek Secure also integrates with common SIEM and central management tools.
Waratek Secure is one of three solutions in Waratek’s Runtime Application Security Platform. Waratek Patch fixes known flaws in web applications using functional equivalent virtual patches requiring no downtime or source code changes. Waratek Enterprise upgrades out-of-support Java applications to a current version of Java and includes the features of Patch and Secure. Waratek’s products never require source code changes or routine tuning, generate false positives, and have an ultra-low performance impact.
To learn more please visit https://www.waratek.com/products/
Waratek makes it easy for teams to instantly patch known flaws, virtually upgrade out-of-support applications, and protect applications from known and Zero Day attacks – all without time consuming and expensive downtime, source code changes, or unacceptable performance overhead. Using patented runtime protection technology, Waratek’s application security platform is highly accurate, easy to install, and simple to operate.
Waratek is one of CSO Online’s Best Security Software solutions of 2017, a winner of the RSA Innovation Sandbox Award, and more than a dozen other awards and recognitions.
Waratek is based in Dublin, Ireland and Atlanta, Georgia. For more information visit www.waratek.com
Mike Gallo for Waratek