We all know that sqlmap is a really great tool which has a lot of options that you can tweak and adjust to exploit the SQLi vuln you just found (or that sqlmap found for you). On rare occasions however you might want to just have a small and simple script or you just want to learn how to do it yourself. So let’s see how you could write your own script to exploit a blind SQLi vulnerability.
more here...............http://diablohorn.wordpress.com/2014/07/26/writing-your-own-blind-sqli-script/
more here...............http://diablohorn.wordpress.com/2014/07/26/writing-your-own-blind-sqli-script/