ropshell> use 3821bd26a6940981694e4a261e659323 (download) name : kernel32.dll (i386/PE) base address : 0x6b810000 total gadgets: 3925
ropshell> suggest "load reg" > 0x6b81ff52 : pop eax; ret > 0x6b8120b5 : pop ebx; ret > 0x6b822e27 : pop ecx; ret > 0x6b810aac : pop esi; ret > 0x6b8437f4 : pop edi; ret > 0x6b810040 : pop ebp; ret > 0x6b85fc2d : popal ; pop eax; pop ebp; ret 8 > 0x6b81206d : pop esp; add [eax], eax; ret > 0x6b86b638 : pop edx; xor [edi + ebp - 0x75], dh; ret > 0x6b860711 : mov eax, [esp + 0x10]; mov esp, ebp; pop ebp; ret 0xc > 0x6b8234aa : mov edx, [esp + 0x10]; mov [edx], eax; mov eax, 3; ret > 0x6b823710 : mov ecx, [esp + 4]; mov eax, 1; xadd [ecx], eax; inc eax; ret 4