ROPSHELL 
ropshell> use 0d7af30d0a42165ee37f1311e6fbe1d1 (download)
name         : ntdll.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 6523

ropshell> suggest "write mem"
> 0x18005b6b8 : add [rbx], edi; ret
> 0x180069dbd : add [rdi], ecx; ret
> 0x180069dbc : add [r15], ecx; ret
> 0x18008550d : add [rax + 0xf], ecx; ret
> 0x18007280a : add [rax + 1], edi; ret
> 0x18006d996 : add [rbx + 0x17401f8], eax; ret
> 0x18010e1c7 : adc [rcx + 0x23], eax; ret
> 0x1800898cf : adc [rdx + 0x10], ecx; ret
> 0x1800c23c0 : add [rbp + 3], ecx; ret
> 0x18001b839 : adc [rbp + 1], esi; ret
> 0x180061406 : add [r9 + 0xf], eax; ret
> 0x1800f6fe2 : add [rax], ebx; bt eax, ecx; setb al; ret
> 0x1800fa840 : add [rdx], esi; ror [rax - 0x7d], 0xc4; ret
> 0x1800877bf : add [rcx], eax; imul rax, rcx; shr rax, 0x38; ret
> 0x1800823e0 : add [rbx + 3], esi; mov [rcx], r8d; ret
> 0x18006a4c2 : add [r13 + 0x88504], ecx; add [rax], al; ret
> 0x1800a77d1 : add [rbx], eax; add [rax + 0x20c48348], dl; pop rbp; ret
> 0x1800cd8e1 : add [rdi], eax; cld ; jmp [rbp + 0x48]
> 0x1800afce7 : adc [rsi], eax; add [rax - 0x916c317], dl; jmp [rbp + 0x48]
> 0x18006a4e5 : add [rdx + 9], esi; xor eax, eax; cmp [rcx], r8d; seta al; ret
> 0x1800898c7 : adc [rdx], eax; movups xmm1, xmm[r9 + 0x10]; movups xmm[rdx + 0x10], xmm1; ret
> 0x180076357 : add [rdi], rcx; test [rbx - 0x1b], cl; add al, 0; xor eax, eax; add rsp, 0x38; ret
> 0x1800f5052 : adc [rdx + 0x4b0], eax; movups xmm1, xmm[r9 + 0x4c0]; movups xmm[rdx + 0x4c0], xmm1; ret
> 0x180085fd5 : add [rsi], ebp; xor [rbp - 0x78], al; push rsp; or eax, [rbx]; mov eax, r10d; add rsp, 0x28; ret
> 0x1800514fc : add [rbx + 0x2418902], ecx; movzx eax, [rdx + 4]; mov [rcx + 6], ax; xor eax, eax; ret
> 0x1801079f4 : add [rax + 0x48], esi; mov eax, [rip + 0x57fe2]; mov r9, [rip + 0x745fb]; call r9
> 0x18006001c : add [rbx], ebp; rol [rcx - 0x77], 1; add cl, [rbx + 0x5c8b48c2]; and al, 8; mov rsi, [rsp + 0x10]; ret
> 0x18006001b : add [r11], ebp; rol [rcx - 0x77], 1; add cl, [rbx + 0x5c8b48c2]; and al, 8; mov rsi, [rsp + 0x10]; ret
> 0x18008f3ed : add [rcx + 0x46894101], esi; mov r8d, [rbx + rdx*8 + 0xc]; mov rdx, r13; add r8, r15; call r8
> 0x18002921b : add [rcx + 0x18], rax; mov eax, [rcx + 0x10]; mov [rcx + rax*8 + 0x20], r8; mov eax, edx; inc [rcx + 0x10]; ret

© 2014 - 2019 - Powered by ROPEME | Contact