Whitepaper discussing blind SQL injection discovery and exploitation techniques. It describes how to deal with blind SQL injection on ASP/ASP.NET applications running with access to XP_CMDSHELL.
38f99722128efd5e6ad90e4e47213ad4e80f38e80cd65725de7307d4dc245cf1