0
![[SQL Injection logo]](http://unixwiz.net/images/sqlinjection.jpg)
A customer asked that we check out his intranet site, which was used by the company's employees and customers.This was part of a larger security review, and though we'd not actually used SQL injection to penetrate a network before, we were pretty familiar with the general concepts. We were completely successful in this engagement, and wanted to recount the steps taken as an illustration.
