com.cybermkd.icewall.attack.SqlInjection Maven / Gradle / Ivy

Go to download

Show more of this group Show more artifacts with this name
Show all versions of ICEWall Show documentation

一个轻量级的应用防火墙

The newest version!

package com.cybermkd.icewall.attack;

import org.apache.commons.lang.StringEscapeUtils;

/**
 * SQL注入攻击
 */
public class SqlInjection implements Istrip {

    /**
     * @param value 待处理内容
     * @return
     * @Description SQL注入内容剥离
     */
    public String strip(String value) {

        //剥离SQL注入部分代码
        return StringEscapeUtils.escapeSql(value.replaceAll("('.+--)|(\\|)|(%7C)", ""));
    }
}