Over the years, I've seen and read many tutorials on SQLI. Many of them were incomplete, many were wrong, and some were just crap. Out of all these tuts though, one really struck me as being the best. Since many posters on Totse keep asking about web hacking, and since SQLI is a pretty common vulnerability, although it can be very tedious to execute, I decided to post this tut. I hope all of you can benefit from it, and get to h4xx0r1n9 those sites.