ROPSHELL 
ropshell> use 15109b0c58e03b3c7601dbd5edf48830 (download)
name         : etms (i386/ELF)
base address : 0x804b8d0
total gadgets: 6252

ropshell> suggest
call
    > 0x0804b980 : call eax
    > 0x0805baa5 : call ebx
    > 0x0805b106 : call ecx
    > 0x080628eb : call edx
    > 0x0808020f : call esi
jmp
    > 0x08065f34 : jmp eax
    > 0x08072ae4 : jmp ebx
    > 0x080dfdcc : jmp edx
    > 0x080ba6e5 : jmp [eax]
    > 0x080ba2d0 : jmp [ecx]
load mem
    > 0x0810a03e : mov eax, [edx]; pop ebp; ret
    > 0x080f2e0e : mov ecx, [edx]; shr eax, cl; ret
    > 0x0810a050 : mov eax, [edx + 4]; pop ebp; ret
    > 0x080dc304 : mov eax, [ebp + 0xc]; pop ebp; ret
    > 0x080ef8f9 : mov esi, [ebp + 8]; call ebx
load reg
    > 0x080e0572 : pop edi; ret
    > 0x0804b954 : pop ebp; ret
    > 0x0810040d : pop esp; ret
    > 0x0806d2ee : popal ; ret
    > 0x08096354 : pop eax; pop ebp; ret
pop pop ret
    > 0x0804b954 : pop ebp; ret
    > 0x08096354 : pop eax; pop ebp; ret
    > 0x080ed561 : pop eax; pop ebx; pop ebp; ret
    > 0x0804cf6b : pop ebx; pop esi; pop edi; pop ebp; ret
    > 0x080f45dc : pop eax; pop ebx; pop esi; pop edi; pop ebp; ret
stack pivoting
    > 0x080dddf8 : lea esp, [ebp - 8]; pop ebx; pop edi; pop ebp; ret
    > 0x0804b94f : lea esp, [esp + 4]; pop ebx; pop ebp; ret
    > 0x080f26d6 : xchg eax, esp; add [eax], eax; add cl, cl; ret
    > 0x080d36b4 : push ebp; fmul [ebx + 0x408be445]; pop esp; mov [esp + 4], edx; mov [esp], eax; call ecx
    > 0x08082c5c : xchg edx, esp; push es; add [eax - 0x366ffe15], dl; ret
write mem
    > 0x08065f32 : adc [eax], ecx; jmp eax
    > 0x080ca26f : add [eax], edx; clc ; dec ecx; ret
    > 0x080614e1 : add [eax + 0x5b34c483], edx; pop ebp; ret
    > 0x080ef622 : add [ebx + 0x4418908], ecx; pop ebp; ret
    > 0x0804b94e : add [ebp + 0x5b042464], ecx; pop ebp; ret

© 2014 - 2019 - Powered by ROPEME | Contact