java对html转移的语言反编译-org apache commons lang3包有个StringEscapeUti

最新推荐文章于 2022-09-05 09:06:09 发布
最新推荐文章于 2022-09-05 09:06:09 发布
阅读量644 收藏
点赞数
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_44906668/article/details/89282819
版权
这篇博客介绍了如何在Java中利用Apache Commons Lang3包的StringEscapeUtils工具类进行HTML、JavaScript等语言的转义和反编译操作,包括escapeJava、unescapeJava、escapeHtml、unescapeHtml、escapeXml、unescapeXml以及escapeJavaScript和unescapeJavaScript等方法的使用。同时,作者建议避免转义后存储,以防止字符混乱问题,推荐仅在查询时进行特殊字符转义。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

               

StringEscapeUtils


用escapeJava方法转义

用unescapeJava方法反转义

用escapeHtml方法转义

用unescapeHtml方法反转义

用escapeXml方法转义

用unescapeXml方法反转义

用escapeJavaScript方法转义

用unescapeJavaScript方法反转义

源码内容方法

/* * Licensed to the Apache Software Foundation (ASF) under one or more * contributor license agreements.  See the NOTICE file distributed with * this work for additional information regarding copyright ownership. * The ASF licenses this file to You under the Apache License, Version 2.0 * (the "License"); you may not use this file except in compliance with * the License.  You may obtain a copy of the License at *  *      http://www.apache.org/licenses/LICENSE-2.0 *  * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */package org.apache.commons.lang3;import java.io.IOException;import java.io.Writer;import org.apache.commons.lang3.text.translate.AggregateTranslator;import org.apache.commons.lang3.text.translate.CharSequenceTranslator;import org.apache.commons.lang3.text.translate.EntityArrays;import org.apache.commons.lang3.text.translate.LookupTranslator;import org.apache.commons.lang3.text.translate.NumericEntityUnescaper;import org.apache.commons.lang3.text.translate.OctalUnescaper;import org.apache.commons.lang3.text.translate.UnicodeEscaper;import org.apache.commons.lang3.text.translate.UnicodeUnescaper;/** * <p>Escapes and unescapes {@code String}s for * Java, Java Script, HTML and XML.</p> * * <p>#ThreadSafe#</p> * @since 2.0 * @version $Id: StringEscapeUtils.java 1148520 2011-07-19 20:53:23Z ggregory $ */public class StringEscapeUtils {    /* ESCAPE TRANSLATORS */    public static final CharSequenceTranslator ESCAPE_JAVA =           new LookupTranslator(            new String[][] {               {"\"", "\\\""},              {"\\", "\\\\"},          }).with(            new LookupTranslator(EntityArrays.JAVA_CTRL_CHARS_ESCAPE())          ).with(            UnicodeEscaper.outsideOf(32, 0x7f)         );    public static final CharSequenceTranslator ESCAPE_ECMASCRIPT =         new AggregateTranslator(            new LookupTranslator(                      new String[][] {                             {"'", "\\'"},                            {"\"", "\\\""},                            {"\\", "\\\\"},                            {"/", "\\/"}                      }),            new LookupTranslator(EntityArrays.JAVA_CTRL_CHARS_ESCAPE()),            UnicodeEscaper.outsideOf(32, 0x7f)         );                public static final CharSequenceTranslator ESCAPE_XML =         new AggregateTranslator(            new LookupTranslator(EntityArrays.BASIC_ESCAPE()),            new LookupTranslator(EntityArrays.APOS_ESCAPE())        );    public static final CharSequenceTranslator ESCAPE_HTML3 =         new AggregateTranslator(            new LookupTranslator(EntityArrays.BASIC_ESCAPE()),            new LookupTranslator(EntityArrays.ISO8859_1_ESCAPE())        );    public static final CharSequenceTranslator ESCAPE_HTML4 =         new AggregateTranslator(            new LookupTranslator(EntityArrays.BASIC_ESCAPE()),            new LookupTranslator(EntityArrays.ISO8859_1_ESCAPE()),            new LookupTranslator(EntityArrays.HTML40_EXTENDED_ESCAPE())        );    public static final CharSequenceTranslator ESCAPE_CSV = new CsvEscaper();    // TODO: Create a parent class - 'SinglePassTranslator' ?    //       It would handle the index checking + length returning,     //       and could also have an optimization check method.    static class CsvEscaper extends CharSequenceTranslator {        private static final char CSV_DELIMITER = ',';        private static final char CSV_QUOTE = '"';        private static final String CSV_QUOTE_STR = String.valueOf(CSV_QUOTE);        private static final char[] CSV_SEARCH_CHARS =             new char[] {CSV_DELIMITER, CSV_QUOTE, CharUtils.CR, CharUtils.LF};        @Override        public int translate(CharSequence input, int index, Writer out) throws IOException {            if(index != 0) {                throw new IllegalStateException("CsvEscaper should never reach the [1] index");            }            if (StringUtils.containsNone(input.toString(), CSV_SEARCH_CHARS)) {                out.write(input.toString());            } else {                out.write(CSV_QUOTE);                out.write(StringUtils.replace(input.toString(), CSV_QUOTE_STR, CSV_QUOTE_STR + CSV_QUOTE_STR));                out.write(CSV_QUOTE);            }            return input.length();        }    }    /* UNESCAPE TRANSLATORS */    // TODO: throw "illegal character: \92" as an Exception if a \ on the end of the Java (as per the compiler)?    public static final CharSequenceTranslator UNESCAPE_JAVA =         new AggregateTranslator(            new OctalUnescaper(),     // .between('\1', '\377'),            new UnicodeUnescaper(),            new LookupTranslator(EntityArrays.JAVA_CTRL_CHARS_UNESCAPE()),            new LookupTranslator(                      new String[][] {                             {"\\\\", "\\"},                            {"\\\"", "\""},                            {"\\'", "'"},                            {"\\", ""}                      })        );    public static final CharSequenceTranslator UNESCAPE_ECMASCRIPT = UNESCAPE_JAVA;    public static final CharSequenceTranslator UNESCAPE_HTML3 =         new AggregateTranslator(            new LookupTranslator(EntityArrays.BASIC_UNESCAPE()),            new LookupTranslator(EntityArrays.ISO8859_1_UNESCAPE()),            new NumericEntityUnescaper()        );    public static final CharSequenceTranslator UNESCAPE_HTML4 =         new AggregateTranslator(            new LookupTranslator(EntityArrays.BASIC_UNESCAPE()),            new LookupTranslator(EntityArrays.ISO8859_1_UNESCAPE()),            new LookupTranslator(EntityArrays.HTML40_EXTENDED_UNESCAPE()),            new NumericEntityUnescaper()        );    public static final CharSequenceTranslator UNESCAPE_XML =         new AggregateTranslator(            new LookupTranslator(EntityArrays.BASIC_UNESCAPE()),            new LookupTranslator(EntityArrays.APOS_UNESCAPE()),            new NumericEntityUnescaper()        );    public static final CharSequenceTranslator UNESCAPE_CSV = new CsvUnescaper();    static class CsvUnescaper extends CharSequenceTranslator {        private static final char CSV_DELIMITER = ',';        private static final char CSV_QUOTE = '"';        private static final String CSV_QUOTE_STR = String.valueOf(CSV_QUOTE);        private static final char[] CSV_SEARCH_CHARS =             new char[] {CSV_DELIMITER, CSV_QUOTE, CharUtils.CR, CharUtils.LF};        @Override        public int translate(CharSequence input, int index, Writer out) throws IOException {            if(index != 0) {                throw new IllegalStateException("CsvUnescaper should never reach the [1] index");            }            if ( input.charAt(0) != CSV_QUOTE || input.charAt(input.length() - 1) != CSV_QUOTE ) {                out.write(input.toString());                return input.length();            }            // strip quotes            String quoteless = input.subSequence(1, input.length() - 1).toString();            if ( StringUtils.containsAny(quoteless, CSV_SEARCH_CHARS) ) {                // deal with escaped quotes; ie) ""                out.write(StringUtils.replace(quoteless, CSV_QUOTE_STR + CSV_QUOTE_STR, CSV_QUOTE_STR));            } else {                out.write(input.toString());            }            return input.length();        }    }    public StringEscapeUtils() {      super();    }    public static final String escapeJava(String input) {        return ESCAPE_JAVA.translate(input);    }    public static final String escapeEcmaScript(String input) {        return ESCAPE_ECMASCRIPT.translate(input);    }    public static final String unescapeJava(String input) {        return UNESCAPE_JAVA.translate(input);    }    public static final String unescapeEcmaScript(String input) {        return UNESCAPE_ECMASCRIPT.translate(input);    }    public static final String escapeHtml4(String input) {        return ESCAPE_HTML4.translate(input);    }    public static final String escapeHtml3(String input) {        return ESCAPE_HTML3.translate(input);    }                    public static final String unescapeHtml4(String input) {        return UNESCAPE_HTML4.translate(input);    }     public static final String unescapeHtml3(String input) {        return UNESCAPE_HTML3.translate(input);    }      public static final String escapeXml(String input) {        return ESCAPE_XML.translate(input);    }                     public static final String unescapeXml(String input) {        return UNESCAPE_XML.translate(input);    }                    //-----------------------------------------------------------------------    public static final String escapeCsv(String input) {        return ESCAPE_CSV.translate(input);    }    public static final String unescapeCsv(String input) {        return UNESCAPE_CSV.translate(input);    }}

针对转译,尽量不要进行转译后入库,只做查询出特殊字符的转译,或者自己写具体字符的转译,防止转译编码等导致字符混乱


           
java反序列化之Commons-Collections2链分析
weixin_45682070的博客
01-12 723
环境 JDK 1.7 Commons Collections 4.0 javassit maven所需pom <dependency> <groupId>org.apache.commons</groupId> <artifactId>commons-collections4</artifactId> <version>4.0</version> </dependency> <dep
java反编译工具(HTML版)
12-09
java反编译工具(HTML版),可以反编译CLASS,蛮好玩实用的。
javahtml转移语言反编译-org.apache.commons.lang3有个StringEscapeUtils
seapeak007的博客
01-07 5652
StringEscapeUtils 用escapeJava方法转义 用unescapeJava方法反转义 用escapeHtml方法转义 用unescapeHtml方法反转义 用escapeXml方法转义 用unescapeXml方法反转义 用escapeJavaScript方法转义 用unescapeJavaScript方法反转义
Java转义工具类StringEscapeUtils的学习笔记
weixin_45866849的博客
09-05 1万+
StringEscapeUtils的主要功能就是为JavaJava Script,Html,XML进行转义与反转义。
java stringescapeutils_java特殊字符处理 StringEscapeUtils
weixin_32179749的博客
02-26 820
/** Licensed to the Apache Software Foundation (ASF) under one or more* contributor license agreements. See the NOTICE file distributed with* this work for additional information regarding copyright ...
反编译html代码
weixin_30613727的博客
11-20 1164
//反编译Html代码 public string HtmlFilter(string html) { //设置要删除的标记 string[] lable = { "font", "span", "div", "p" }; foreach (string lb in lable) { ...
commons-lang3-3.10.rar
08-05
Apache Commons Lang 是一个Java工具,它提供了对Java语言核心功能的增强,使得开发者能够更加高效地编写代码。"commons-lang3-3.10.rar" 文件是Apache Commons Lang库的版本3.10的压缩含了不同格式的二进制...
commons-lang3-3.5-src
12-01
Apache Commons Lang 是一个Java工具,它提供了一些实用的、高级的编程功能,这些功能在标准Java库中并未涵盖。`commons-lang3-3.5`是该项目的一个版本,主要含了许多增强和补充了Java核心类库的工具类。这个...
解决Java开发常见问题:commons-lang-2.1.jar分享
标题中提到的 "commons-lang-2.1.jar" 指的是 Apache Commons Lang 库的2.1版本的 JAR 文件。Apache Commons Lang 是一个 Java 语言库,提供了丰富的辅助类和方法,用于处理字符串、数值、日期时间以及基本类型等,...
详解commons-lang3-3.7:优化内存使用的Java工具库
在深入探讨“commons-lang3-3.7完整官方资料”这一标题所涉及的知识点之前,首先需要明确commons-lang3Apache Commons项目下的一个子项目,专门用于提供Java编程中常用的辅助类和方法,尤其是那些在Java标准库中未...
CHM 反编译工具 输出HTML
05-07
支持讲CHM文件反编译为多个html格式文件,同时输出CHM内的图片等资源
How to change byte to HexString
低调的程序员
06-14 224
private final static String[] bts= { "00","01","02","03","04","05","06","07","08","09","0A","0B","0C","0D","
使用apache common lang下的StringEscapeUtils来对html,sql等特殊字符进行转义
cuixiang1022的专栏
09-01 2261
org.apache.commons.lang.StringEscapeUtils 类可以对js sql html xml等代码进行转义!     String userName = ”1' or '1'='1”;     String password = ”123456”;     userName = StringEscapeUtils.escapeSql(userNam
wxapkg的html反编译,wxapkg反编译工具
weixin_32744285的博客
06-16 1177
软件简介 Soft IntroductionWechatApp微信小程序反编译工具wxapkg及相关文件(.wxss,.json,.wxs,.wxml)还原工具。wxappUnpacker版本V0.3,当前功能如下(分功能尚未完成!)将app-config.json中的内容拆分到各个文件对应的.json和app.json,并通过搜索app-config.json所在文件夹下的所有...
html 乱码反编译,反编译乱码对比
weixin_42611310的博客
07-02 615
//Token: 0x02000006 RID: 6public classExternalLinksController : Controller{//Token: 0x06000014 RID: 20 RVA: 0x00002AB9 File Offset: 0x00000CB9publicExternalLinksController(IExternalSiteInfoService ext...
page-frame.html反编译,小程序反编译
weixin_42530458的博客
06-19 1638
前言最近连续过两个购物节,想必大家对于自己究竟点开了多少次某网购 App 都记不清楚了,本人手机一向以精简为宗旨,所以没有那几个 App……因为懒得装那些 App,这直接导致我使用 小程序 的频率越来越高了。经常使用,就会发现这些小程序的体验变得越来越好,无论是加载速度、动效、H5、算法,AR 还是小游戏等都让人很感兴趣。所以产生了学习借鉴的念头……本文将记录 微信小程序反编译 的过程,注意:禁止...
chm editor 打html,CHM Editor(反编译HTML帮助文件)
weixin_35067439的博客
06-15 1220
CHM Editor是一款用于反编译HTML帮助文件(.chm)的简单工具,编辑chm格式的文档快捷方便,而且是中文界面,软件默认支持谷歌/bing翻译,非常不错,强烈推荐!使用方法:更改试用期限,因为每个电脑注册表项值可能不一样,请您在软件安装后,使用一次,开始--运行--Regedit在HKEY_CLASSES_ROOT下有一个32位由数字加字母无规则组合,且以数字开头的表项,如:5E6790...
网页开发环境的重要性_少即是多:极简方法在网页设计中的重要性
weixin_26732881的博客
08-03 314
网页开发环境的重要性Written by Alan Smith 由艾伦·史密斯 ( Alan Smith)撰写 Minimalism has been an increasingly popular trend in the web design world. Designers may be tempted by bolder, feature-rich design because it m...
小程序反编译html源码,小程序反编译过程、完美扒任何小程序前端!
weixin_39613561的博客
06-21 640
准备工具:夜神模拟器、RE管理器、Node环境nodejs运行环境,这是反编译脚本所需运行环境。nodejs下载与安装:(1)、nodejs下载链接:https://nodejs.org/zh-cn/download/ 或者 http://nodejs.cn/download/。安装的过程一路next就可以了,安装后将nodejs设置为环境变量。(2)、打开cmd,测试是否安装成功,在命令行输入n...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值