ROPSHELL 
ropshell> use 0fc6cdf0eeac48713362b652112ad079 (download)
name         : ch97 (x86_64/ELF)
base address : 0x4004d0
total gadgets: 8686

ropshell> suggest "stack pivoting"
> 0x0048d356 : mov rsp, rcx; ret
> 0x00465d22 : xchg eax, esp; ret
> 0x0048d357 : mov esp, ecx; ret
> 0x00449a87 : mov esp, edx; call rbp
> 0x0044a060 : mov esp, esi; call r15
> 0x00482419 : mov rsp, r8; mov rbp, r9; nop ; jmp rdx
> 0x0048241a : mov esp, eax; mov rbp, r9; nop ; jmp rdx
> 0x00469c1f : lea esp, [rax]; add [rax + 0x39], cl; ret
> 0x0040f744 : lea rsp, [rbp - 0x20]; pop rbx; pop r12; pop r13; pop r14; pop rbp; ret
> 0x0040f745 : lea esp, [rbp - 0x20]; pop rbx; pop r12; pop r13; pop r14; pop rbp; ret
> 0x004869c1 : mov esp, ebx; mov rbx, rax; nop cs:[rax + rax]; call [r12]
> 0x0040e973 : lea esp, [rbx + rax*8 + 8]; nop [rax + rax]; call [rbx]
> 0x00400b94 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact