ROPSHELL 
ropshell> use 3e47593aeea6e870278b34d5fe0b83c8 (download)
name         : input_output.exe (i386/PE)
base address : 0x401000
total gadgets: 132

ropshell> suggest
call
    > 0x00401024 : call eax
    > 0x00401327 : call edx
jmp
    > 0x004012c5 : jmp eax
    > 0x0040170d : jmp [esi - 0x70]
    > 0x00401660 : push esp; mov ebp, [esp + 0x58]; add esp, 0x5c; ret
load mem
    > 0x004019cc : mov eax, [ebx + 4]; mov [esp], esi; call eax
load reg
    > 0x00401951 : pop ebx; ret
    > 0x004019ee : pop esi; ret
    > 0x00401343 : pop ebp; ret
    > 0x00401667 : pop esp; ret
    > 0x00401664 : pop eax; add esp, 0x5c; ret
pop pop ret
    > 0x00401343 : pop ebp; ret
    > 0x004019ed : pop ebx; pop esi; ret
sp lifting
    > 0x00401a10 : add esp, 0x1c; ret
    > 0x00401a10 : add esp, 0x1c; ret
    > 0x0040182b : add esp, 0x2c; ret
    > 0x00401665 : add esp, 0x5c; ret
    > 0x004018fb : sub esp, 0xc; nop ; call eax
stack pivoting
    > 0x00401335 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact