ROPSHELL 
ropshell> use 00dfcfa3da8c5e7c15e89a1a2ed510d6 (download)
name         : ntdll.dll (x86_64/RAW)
base address : 0x0
total gadgets: 12489

ropshell> suggest "stack pivoting"
> 0x00031e6d : xchg eax, esp; ret
> 0x000aabc6 : xchg esp, edi; dec ecx; ret
> 0x00032abb : mov esp, ebx; pop rbx; ret
> 0x000259e4 : mov esp, ebp; pop rbp; ret
> 0x00057900 : lea esp, [rdx + 0x48d4b39]; ret
> 0x00088138 : lea esp, [rsp + 0x80]; pop rcx; ret
> 0x000711e6 : mov esp, esi; pop rbx; pop rdi; pop rsi; pop rbp; ret 0x10
> 0x00055f25 : lea esp, [rdi + rdi*8 - 1]; jmp [rax]
> 0x0006601f : lea esp, [rcx + rdi*8 - 1]; dec [rbx + 0x33c28bf7]; dec [rcx - 0x69f4b]; jmp [rcx]
> 0x0002501e : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact