Whitepaper discussing blind SQL injection discovery and exploitation techniques. It describes how to deal with blind SQL injection on ASP/ASP.NET applications running with access to XP_CMDSHELL.
You can download it from the following link: https://packetstormsecurity.com/files/download/66896/blindsql.pdf
Source: https://packetstormsecurity.com/files/66896/blindsql.pdf.html