ROPSHELL 
ropshell> use 3bec4ff4a4e17444678adc017c3e6778 (download)
name         : libc-2.11.2.so (i386/RAW)
base address : 0x0
total gadgets: 12866

ropshell> suggest "stack pivoting"
> 0x000ee929 : xchg eax, esp; ret
> 0x00016b4f : mov esp, ebp; pop ebp; ret
> 0x00042588 : lea esp, [ecx - 4]; ret
> 0x0002a3dd : mov esp, ecx; jmp edx
> 0x000f8159 : lea esp, [ebp - 8]; pop ebx; pop edi; pop ebp; ret
> 0x0012df81 : lea esp, [esi - 3]; jmp [edx]
> 0x000d6c4b : lea esp, [edi + edi*8 - 1]; jmp [ebp - 0x77]
> 0x000d9bf2 : xchg edx, esp; add [eax], eax; add [eax], al; add [ebx + 0x5e5b08c4], al; pop edi; pop ebp; ret
> 0x000e0180 : mov esp, edi; mov ebx, [ecx]; mov esi, [ecx + 4]; mov edi, [ecx + 8]; mov ebp, [ecx + 0xc]; jmp edx
> 0x000173cb : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact