I think everyone wants to know how sql injection exactly works is interested in seeing the thought process, rather than a merely a conclusion and and brute-force script.

Awesome work!