ROPSHELL 
ropshell> use 2e92b666a7cc8af174d4445be8fdb0ed (download)
name         : ntdll.dll (i386/PE)
base address : 0x77ec1000
total gadgets: 10918

ropshell> suggest "load reg"
> 0x77f8489c : pop eax; ret
> 0x77ec38e9 : pop ebx; ret
> 0x77f779d4 : pop ecx; ret
> 0x77ef33c0 : pop edx; ret
> 0x77ec42c6 : pop esi; ret
> 0x77ef4499 : pop edi; ret
> 0x77ec1f2a : pop ebp; ret
> 0x77ef7824 : popal ; ret 3
> 0x77f2d695 : pop esp; pop esi; pop ebp; ret 8
> 0x77ef449b : mov eax, [esp + 4]; ret
> 0x77ef46fe : mov ecx, [esp + 4]; sub eax, ecx; ret
> 0x77ef4c2e : mov edx, [esp + 0x1c];  cmpxchg8b [ebp]; pop ebp; pop ebx; ret 0x14
> 0x77ef4d71 : mov edi, [esp + 8]; mov ecx, [esp + 0xc]; mov eax, [esp + 0x10]; shr ecx, 2; rep stosd es:[edi], eax; pop edi; ret 0xc

© 2014 - 2019 - Powered by ROPEME | Contact