ROPSHELL 
ropshell> use 1a40c3f362d7f068d2a744b541e6c887 (download)
name         : winbox.exe (i386/PE)
base address : 0x401000
total gadgets: 35665

ropshell> suggest "write mem"
> 0x005059fc : adc [ecx], eax; ret
> 0x00519cae : add [ecx], edi; ret
> 0x00421c06 : add [ecx], ebp; ret
> 0x00448031 : add [edi], ecx; inc ebp; ret 0x8b
> 0x0042b508 : add [eax + 0xc], edx; ret 4
> 0x00505ba3 : add [ecx + 0xc], edx; ret 4
> 0x004db589 : add [edi + 0x5d], ebx; ret 8
> 0x00448090 : add [ebp + 0x440f8875], ecx; ret 0x8b
> 0x0043b83e : add [eax], edi; cmovbe eax, ecx; ret 4
> 0x00481694 : adc [eax + 0x5b], ebx; pop ebp; ret 4
> 0x00441776 : add [eax + 0x5b], ecx; pop ebp; ret 8
> 0x0048c2ba : add [ebx + 0x5e5b10c4], eax; pop ebp; ret
> 0x00478517 : add [edx + 0x5b], ebx; pop ebp; ret
> 0x0051048f : add [ecx], ebx; rol [ebx - 0x3f7c0420], 0xa; ret
> 0x004dec93 : add [ebx + 0x1489f440], ecx; add ecx, ecx; ret 4
> 0x005044b9 : add [edx], ebx; pop ebx; pop esi; pop edi; pop ebp; ret
> 0x0048afb6 : add [eax + 0xe], ebp; push ebp; add cl, cl; ret
> 0x0048ac06 : add [ecx + edx], esi; push ebp; add cl, cl; ret
> 0x004f79b3 : adc [edi + 0x658dfff2], ebp; clc ; pop ebx; pop esi; pop ebp; ret 4
> 0x0041bee8 : add [eax], edx; add [eax], al; call eax
> 0x005153ed : add [eax], esi; int1 ; dec [ebp + 0x5e5bf465]; pop edi; pop ebp; ret
> 0x00505d85 : add [ebp + 7], esi; cmp [ecx + 0x34], 0; sete al; ret
> 0x005044b7 : add [eax], ebx; add [edx], ebx; pop ebx; pop esi; pop edi; pop ebp; ret
> 0x00463d08 : add [esi], eax; add [ebp - 0x27760b9b], cl; pop ebx; pop esi; pop edi; pop ebp; ret
> 0x00453ec8 : add [ebx + 0xb8], edx; lea esp, [ebp - 0xc]; pop ebx; pop esi; pop edi; pop ebp; ret 8
> 0x004c4f6f : add [ebx + 4], esi; lea esp, [ebp - 0xc]; pop ebx; pop esi; pop edi; pop ebp; ret 4
> 0x004ea64a : add [esi + 0x56], edx; lea esp, [ebp - 0xc]; pop ebx; pop esi; pop edi; pop ebp; ret 8
> 0x00476c3f : add [edi + 6], esi; mov edx, [edx + 0x10]; mov [eax], edx; ret
> 0x004e3daf : adc [edx + eax], ecx; add [ebx + 0x241c8901], cl; call [eax + 0x18]
> 0x004ce8ba : add [ebp + 8], edx; pop ebp; mov edx, [ecx + 0x34]; mov ecx, eax; jmp edx
> 0x0042b519 : add [eax], ecx; pop ebp; add [eax + 8], ecx; add [eax + 0xc], edx; add [eax + 4], edx; ret 8
> 0x00462c42 : add [ecx + 0x39], eax; sal [esp + esi*8 + 0x31], 1; shr bl, 2; mov al, 1; pop ebx; pop ebp; ret
> 0x004630ff : adc [ebx], eax; cmp [ecx + 0x7c89240c], cl; and al, 4; mov ecx, [ebp - 0x1c]; call [edx + 0xc]
> 0x0049ec34 : add [esi + 0x52], edi; mov eax, [esi + 0x18]; mov edx, [ebp - 0x3c]; mov ecx, [eax + edx]; mov eax, [ecx]; call [eax + 0x34]

© 2014 - 2019 - Powered by ROPEME | Contact