Free Online ROP Gadgets Search

ropshell> use 057a85a42c76303e5fd10234e92bbe7c (download)
name         : nounours (x86_64/RAW)
base address : 0x0
total gadgets: 10789

ropshell> suggest "stack pivoting"
> 0x000a61b6 : mov rsp, rcx; ret
> 0x0000fbff : xchg eax, esp; ret
> 0x000a61b7 : mov esp, ecx; ret
> 0x00055e67 : mov esp, edx; call rbp
> 0x0008bda8 : mov rsp, r8; mov rbp, r9; jmp rdx
> 0x0008bda9 : mov esp, eax; mov rbp, r9; jmp rdx
> 0x00052fa2 : lea rsp, [rbp - 0x18]; pop rbx; pop r12; pop r13; pop rbp; ret
> 0x00052fa3 : lea esp, [rbp - 0x18]; pop rbx; pop r12; pop r13; pop rbp; ret
> 0x0006ec67 : xchg esi, esp; sbb [rax], al; add [rax - 0x7d], cl; ret
> 0x000283f1 : xchg edx, esp; add [rax], al; add [rcx - 0x7d], cl; jmp [rax]
> 0x000c45b7 : xchg esp, edi; adc ch, [rip + 0x8acc8c6]; and cs:[rax], edx; jmp [rdi]
> 0x0001a153 : lea esp, [rbx + rax*8 + 8]; nop [rax + rax]; call [rbx]
> 0x0009ff32 : lea esp, [rcx + rdx*8]; lea rax, [rcx - 8]; mov [rbp - 0x68], rbx; mov rbx, r12; mov r12, rax; nop [rax + rax]; call [rbx]
> 0x0000cee4 : leave ; ret