ROPSHELL 
ropshell> use 38ff29a8b6803670e2dcdfffaaf9ef5d (download)
name         : libc-2.30.so (x86_64/ELF)
base address : 0x25670
total gadgets: 15319

ropshell> suggest "load reg"
> 0x00028ff4 : pop rax; ret
> 0x000332ff : pop rbx; ret
> 0x0002709c : pop rsi; ret
> 0x00026bb2 : pop rdi; ret
> 0x00025700 : pop rbp; ret
> 0x00032c5a : pop rsp; ret
> 0x00032c59 : pop r12; ret
> 0x0002921d : pop r13; ret
> 0x0002709b : pop r14; ret
> 0x00026bb1 : pop r15; ret
> 0x0010582e : pop rcx; pop rbx; ret
> 0x0011c421 : pop rdx; pop r12; ret
> 0x00046e5a : pop r8; movups xmm[rdi + 0x68], xmm0; ret
> 0x0014cb28 : pop r11; mov eax, r8d; pop rbp; pop r12; ret
> 0x0010f423 : mov rax, [rsp]; add rsp, 0x28; ret
> 0x000e5d58 : mov eax, [rsp]; add rsp, 0x18; ret
> 0x00107896 : mov ecx, [rsp]; call rax
> 0x0011da82 : mov edi, [rsp]; call rbx
> 0x000abbe8 : mov rdx, [rsp + 0x10]; mov [rax], rdx; ret
> 0x000c0ff2 : mov rsi, [rsp + 0x10]; call rbx
> 0x0002eded : mov rdi, [rsp + 0x38]; call r15
> 0x000ce15c : mov r9, [rsp + 0x10]; call r14
> 0x000abbe9 : mov edx, [rsp + 0x10]; mov [rax], rdx; ret
> 0x000c0ff3 : mov esi, [rsp + 0x10]; call rbx
> 0x00153cbf : mov rcx, [rsp + 0x10]; mov rdi, r15; call rcx
> 0x00047c27 : mov rbx, [rsp + 8]; nop [rax]; mov rsi, r13; mov rdi, r14; mov rdx, r12; call rbp
> 0x00047c28 : mov ebx, [rsp + 8]; nop [rax]; mov rsi, r13; mov rdi, r14; mov rdx, r12; call rbp
> 0x000489ea : mov r12, [rsp + 0x20]; nop ; mov rax, [rsp]; mov rdx, r14; mov rsi, r13; mov rdi, r12; call rax
> 0x000489eb : mov esp, [rsp + 0x20]; nop ; mov rax, [rsp]; mov rdx, r14; mov rsi, r13; mov rdi, r12; call rax
> 0x00153c9e : mov r15, [rsp + 0x68]; mov rdi, [rax]; mov rsi, r15; mov rax, [rdi + 0x38]; call [rax + 8]
> 0x00032696 : mov r8, [rsp + 0x48]; mov rcx, [rsp + 0x18]; mov rsi, [rsp + 0x40]; mov rdi, [rsp + 0x38]; call r15
> 0x00047b42 : mov r13, [rsp + 0x10]; add r13, [rsp + 8]; lea r15, [rax + r14]; mov rdx, rbp; mov rsi, r12; mov rdi, r13; call rbx
> 0x00047b43 : mov ebp, [rsp + 0x10]; add r13, [rsp + 8]; lea r15, [rax + r14]; mov rdx, rbp; mov rsi, r12; mov rdi, r13; call rbx

© 2014 - 2019 - Powered by ROPEME | Contact