Buffer overflow

The aim of this project is to learn how codes can be exploited, this will help me in my coding ability to know how to avoid that. My project involves buffer overflow, the vulnerabilities and exploitation. I want to find all the buffer overflow vulnerabilities in the codes provide and exploit them. I will want to subvert the program by making it execute an arbitrary set of instructions. This should be done from the command line. Implement using a windows virtual machine with Cygwin installed( I have provided the compressed windows virtual machine with Cygwin installed). I will want challenging buffer overflow vulnerability exploitations. ## Deliverables 1. Copy the vulnerable code files into Cygwin directory C:\cygwin\home\Administrator 2. Compile code : gcc -ggdb -o0 -Wall [C FILE] -o [EXE FILE] 3.*Always* run the code in the debugger Use the gdb GUI mode ? Command for GUI mode: gdb -w [EXE FILE] For bufferoverflow vulnerabilities: [login to view URL] the stack and return address location [login to view URL] the address of your malicious code or some other code [login to view URL] the return address [login to view URL] vs. Data [login to view URL]:- C statements are translated to assembly instructions, each of which can be represented by an opcode [login to view URL] other exploit ways I am interested in: -overwriting a function pointer - overwriting a local variable near the buffer in memory on the stack(later is used by printf()..) - heap(used or dynamically allocated memory) 7. Transfer control from the original program