ROPSHELL 
ropshell> use 0d7af30d0a42165ee37f1311e6fbe1d1 (download)
name         : ntdll_test.dll (x86_64/RAW)
base address : 0x0
total gadgets: 7301

ropshell> suggest "stack pivoting"
> 0x00018308 : xchg eax, esp; ret
> 0x00041f2a : mov rsp, r11; pop r14; ret
> 0x00041f2b : mov esp, ebx; pop r14; ret
> 0x0010e446 : lea rsp, [rbp + 0x10]; pop rbp; ret
> 0x0010e447 : lea esp, [rbp + 0x10]; pop rbp; ret
> 0x000b8e7d : xchg esp, edi; call [rax - 0x6f31217]; jmp [rbp + 0x48]
> 0x000a661d : lea esp, [rax - 0x18000000]; fstpnce st(2), st(0); stc ; call [rax + 0x40c48348]; pop rbp; ret
> 0x00025ca8 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact