ropshell> use 33f2e09e5c0755fe275b9865f9023c8b (download) name : IPGen2_64.exe (x86_64/PE) base address : 0x401000 total gadgets: 34433
ropshell> suggest "load reg" > 0x00406195 : pop rax; ret > 0x0040363a : pop rbx; ret > 0x00477813 : pop rcx; ret > 0x00416742 : pop rdx; ret > 0x00404914 : pop rsi; ret > 0x00403b8d : pop rdi; ret > 0x00403a03 : pop rbp; ret > 0x004365c6 : pop rsp; ret > 0x0046b821 : pop r8; ret > 0x0046b811 : pop r12; ret > 0x0040677f : pop r13; ret > 0x004071e8 : pop r14; ret > 0x0040473f : pop r15; pop rbp; ret > 0x005810d4 : movzx rax, [rsp + 8]; ret > 0x0043c557 : mov eax, [rsp + 0x28]; ret > 0x00403599 : pop r9; pop r8; pop rcx; pop rdx; jmp rax > 0x005a9749 : mov rcx, [rsp + 0x38]; call rbx > 0x005d3578 : movzx rdx, [rsp + 0x2f]; call rax > 0x005a974a : mov ecx, [rsp + 0x38]; call rbx > 0x005025b6 : mov edx, [rsp + 0x2c]; call rax > 0x005589f1 : movzx r9, [rsp + 0x58]; call [rbx] > 0x005991ca : mov r8, [rsp + 0x40]; mov rax, [rax]; call [rax + 0x18] > 0x00580477 : mov rsi, [rsp + 0x40]; movsq [rdi], [rsi]; movsq [rdi], [rsi]; mov al, 1; pop rsi; pop rdi; ret > 0x00580478 : mov esi, [rsp + 0x40]; movsq [rdi], [rsi]; movsq [rdi], [rsi]; mov al, 1; pop rsi; pop rdi; ret > 0x005310a5 : mov r10, [rsp + 0x40]; mov rcx, rax; mov rdx, r8; mov r8, r9; mov r9, r10; call [rbx]