ROPSHELL 
ropshell> use 0d7af30d0a42165ee37f1311e6fbe1d1 (download)
name         : ntdll.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 6523

ropshell> suggest "stack pivoting"
> 0x180018f08 : xchg eax, esp; ret
> 0x180042b2a : mov rsp, r11; pop r14; ret
> 0x180042b2b : mov esp, ebx; pop r14; ret
> 0x18010f046 : lea rsp, [rbp + 0x10]; pop rbp; ret
> 0x18010f047 : lea esp, [rbp + 0x10]; pop rbp; ret
> 0x1800b9a7d : xchg esp, edi; call [rax - 0x6f31217]; jmp [rbp + 0x48]
> 0x1800a721d : lea esp, [rax - 0x18000000]; fstpnce st(2), st(0); stc ; call [rax + 0x40c48348]; pop rbp; ret
> 0x1800268a8 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact