ROPSHELL 
ropshell> use 1750752e88087e169b97ae8e4052abb5 (download)
name         : EScript_180020038.api (i386/PE)
base address : 0x23801000
total gadgets: 21964

ropshell> suggest
call
    > 0x23802520 : call eax
    > 0x2381f72d : call ebx
    > 0x238124a5 : call ecx
    > 0x2380f7da : call edx
    > 0x238023ce : call esi
jmp
    > 0x2381009e : push esp; ret
    > 0x2381ecaf : jmp eax
    > 0x238a2d64 : jmp ebx
    > 0x23820a42 : jmp edx
    > 0x239687f9 : jmp esi
load mem
    > 0x23811767 : mov eax, [ecx]; ret
    > 0x238c6e73 : mov eax, [ecx + 0x10]; ret
    > 0x2388aaf3 : mov ebp, [ecx + 0x28682388]; ret
    > 0x2381088a : mov eax, [esi]; pop ecx; pop esi; ret
    > 0x2383d8f5 : mov eax, [edx + 4]; pop ebp; ret
load reg
    > 0x238128af : pop eax; ret
    > 0x2380309f : pop ebx; ret
    > 0x23801054 : pop ecx; ret
    > 0x2395b1c5 : pop edx; ret
    > 0x2380252a : pop esi; ret
pop pop ret
    > 0x238128af : pop eax; ret
    > 0x2380c9b0 : pop eax; pop ebp; ret
    > 0x23853970 : pop eax; pop esi; pop ebp; ret
    > 0x23878b82 : pop eax; pop edi; pop esi; pop ebp; ret
    > 0x238e1865 : pop ecx; pop ecx; pop ebx; pop edi; pop esi; ret
sp lifting
    > 0x238073c1 : add esp, 0x10; ret
    > 0x238073c1 : add esp, 0x10; ret
    > 0x23982f6d : add esp, 0x20; ret
stack pivoting
    > 0x2380ad70 : xchg eax, esp; ret
    > 0x2380230b : mov esp, ebp; pop ebp; ret
    > 0x238d06e0 : lea esp, [ebx]; ret
    > 0x238c6cc8 : push eax; pop esp; pop ecx; movzx eax, ax; ret
    > 0x2395ad42 : xchg esp, ebp; lcall [edi + 0x5e]; pop ebx; ret
write mem
    > 0x238f9a28 : add [ebx], eax; ret
    > 0x23980dba : add [ebx], ecx; ret
    > 0x23921fe2 : adc [ebx], edi; ret
    > 0x23822aa5 : adc [ebx], ebp; ret
    > 0x23802889 : add [ecx], eax; ret

© 2014 - 2019 - Powered by ROPEME | Contact