Mutillidae: Basics of Web Request and Response Interception with Burp-Suite

There is something more here;

• It explains the method to bypass the java script validation built on the client side (browser). 
• After transferring normal strings, change the strings to SQL injection on-the-fly with Burp or another proxy utility.

Fun stuff! :)