ropshell> use 1a0bf0e5d433209385261ac02b3f998e (download)
name         : stage1 (i386/ELF)
base address : 0x480
total gadgets: 45
ropshell> suggest
call
    > 0x000006cc : call eax
    > 0x0000071d : call edx
    > 0x0000067a : call [eax + 0x51]
    > 0x000004bf : call [edx + 0x6a]
    > 0x000005ac : call [edi - 0x18]
jmp
    > 0x00000688 : push esp; mov ebx, [esp]; ret
    > 0x0000057d : jmp [esi - 0x70]
load reg
    > 0x000007eb : pop ebp; ret
    > 0x000007ea : pop edi; pop ebp; ret
    > 0x000005e2 : popal ; cld ; ret
    > 0x000007e9 : pop esi; pop edi; pop ebp; ret
    > 0x0000068a : mov ebx, [esp]; ret
pop pop ret
    > 0x000007eb : pop ebp; ret
    > 0x000007ea : pop edi; pop ebp; ret
    > 0x000007e9 : pop esi; pop edi; pop ebp; ret
    > 0x000007e8 : pop ebx; pop esi; pop edi; pop ebp; ret
    > 0x000005dc : pop ecx; pop ebx; pop esi; pop edi; pop ebp; lea esp, [ecx - 4]; ret
stack pivoting
    > 0x000005e1 : lea esp, [ecx - 4]; ret
    > 0x000006d1 : leave ; ret