ROPSHELL 
ropshell> use 21861ef227329094f97d06c71f688c19 (download)
name         : lab2 (i386/ELF)
base address : 0x460
total gadgets: 67

ropshell> suggest
call
    > 0x000004dc : call eax
    > 0x0000052d : call edx
    > 0x00000482 : call [eax + 0x51]
jmp
    > 0x00000490 : push esp; mov ebx, [esp]; ret
    > 0x0000071b : jmp [edi - 0x18]
load reg
    > 0x00000628 : pop ebp; ret
    > 0x00000627 : pop edi; pop ebp; ret
    > 0x000006ec : popal ; cld ; ret
    > 0x00000626 : pop ebx; pop edi; pop ebp; ret
    > 0x00000759 : pop esi; pop edi; pop ebp; ret
pop pop ret
    > 0x00000628 : pop ebp; ret
    > 0x00000627 : pop edi; pop ebp; ret
    > 0x00000626 : pop ebx; pop edi; pop ebp; ret
    > 0x00000758 : pop ebx; pop esi; pop edi; pop ebp; ret
stack pivoting
    > 0x000006eb : lea esp, [ecx - 4]; ret
    > 0x00000623 : lea esp, [ebp - 8]; pop ebx; pop edi; pop ebp; ret
    > 0x000004e1 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact