ROPSHELL 
ropshell> use 0d7af30d0a42165ee37f1311e6fbe1d1 (download)
name         : ntdll_test.dll (x86_64/RAW)
base address : 0x0
total gadgets: 7301

ropshell> suggest "write mem"
> 0x0005aab8 : add [rbx], edi; ret
> 0x000691bd : add [rdi], ecx; ret
> 0x000691bc : add [r15], ecx; ret
> 0x001314bd : adc [rdx], ebp; lahf ; ret
> 0x0008490d : add [rax + 0xf], ecx; ret
> 0x00071c0a : add [rax + 1], edi; ret
> 0x0006cd96 : add [rbx + 0x17401f8], eax; ret
> 0x0010d5c7 : adc [rcx + 0x23], eax; ret
> 0x00088ccf : adc [rdx + 0x10], ecx; ret
> 0x001350f6 : adc [rdi + 0x16], esi; ret
> 0x000c17c0 : add [rbp + 3], ecx; ret
> 0x0001ac39 : adc [rbp + 1], esi; ret
> 0x00060806 : add [r9 + 0xf], eax; ret
> 0x001652f1 : add [rax], ecx; add al, dh; ret
> 0x0016e92d : adc [rcx], edx; add al, dh; ret
> 0x000f63e2 : add [rax], ebx; bt eax, ecx; setb al; ret
> 0x000f9c40 : add [rdx], esi; ror [rax - 0x7d], 0xc4; ret
> 0x00086bbf : add [rcx], eax; imul rax, rcx; shr rax, 0x38; ret
> 0x000817e0 : add [rbx + 3], esi; mov [rcx], r8d; ret
> 0x000698c2 : add [r13 + 0x88504], ecx; add [rax], al; ret
> 0x000a6bd1 : add [rbx], eax; add [rax + 0x20c48348], dl; pop rbp; ret
> 0x000ccce1 : add [rdi], eax; cld ; jmp [rbp + 0x48]
> 0x000af0e7 : adc [rsi], eax; add [rax - 0x916c317], dl; jmp [rbp + 0x48]
> 0x000698e5 : add [rdx + 9], esi; xor eax, eax; cmp [rcx], r8d; seta al; ret
> 0x00088cc7 : adc [rdx], eax; movups xmm1, xmm[r9 + 0x10]; movups xmm[rdx + 0x10], xmm1; ret
> 0x00075757 : add [rdi], rcx; test [rbx - 0x1b], cl; add al, 0; xor eax, eax; add rsp, 0x38; ret
> 0x000f4452 : adc [rdx + 0x4b0], eax; movups xmm1, xmm[r9 + 0x4c0]; movups xmm[rdx + 0x4c0], xmm1; ret
> 0x000853d5 : add [rsi], ebp; xor [rbp - 0x78], al; push rsp; or eax, [rbx]; mov eax, r10d; add rsp, 0x28; ret
> 0x000508fc : add [rbx + 0x2418902], ecx; movzx eax, [rdx + 4]; mov [rcx + 6], ax; xor eax, eax; ret
> 0x00106df4 : add [rax + 0x48], esi; mov eax, [rip + 0x57fe2]; mov r9, [rip + 0x745fb]; call r9
> 0x0005f41c : add [rbx], ebp; rol [rcx - 0x77], 1; add cl, [rbx + 0x5c8b48c2]; and al, 8; mov rsi, [rsp + 0x10]; ret
> 0x0016e920 : adc [r9], r10; add [rax - 0x39], ch; adc eax, [rax]; push rsp; adc [rcx], edx; add [rcx - 0xfffeeef], ch; ret
> 0x0005f41b : add [r11], ebp; rol [rcx - 0x77], 1; add cl, [rbx + 0x5c8b48c2]; and al, 8; mov rsi, [rsp + 0x10]; ret
> 0x0008e7ed : add [rcx + 0x46894101], esi; mov r8d, [rbx + rdx*8 + 0xc]; mov rdx, r13; add r8, r15; call r8
> 0x0002861b : add [rcx + 0x18], rax; mov eax, [rcx + 0x10]; mov [rcx + rax*8 + 0x20], r8; mov eax, edx; inc [rcx + 0x10]; ret

© 2014 - 2019 - Powered by ROPEME | Contact