ROPSHELL 
ropshell> use 485b0c731872cf1980d31d79313d258b (download)
name         : gg_1 (x86_64/ELF)
base address : 0x4004d0
total gadgets: 8776

ropshell> suggest "stack pivoting"
> 0x0048e256 : mov rsp, rcx; ret
> 0x00467512 : xchg eax, esp; ret
> 0x0048e257 : mov esp, ecx; ret
> 0x0044b4f7 : mov esp, edx; call rbp
> 0x0044bad0 : mov esp, esi; call r15
> 0x00483279 : mov rsp, r8; mov rbp, r9; nop ; jmp rdx
> 0x0041bb84 : xchg edi, esp; add al, [rax]; add dh, dh; ret
> 0x0048327a : mov esp, eax; mov rbp, r9; nop ; jmp rdx
> 0x00410254 : lea rsp, [rbp - 0x20]; pop rbx; pop r12; pop r13; pop r14; pop rbp; ret
> 0x00410255 : lea esp, [rbp - 0x20]; pop rbx; pop r12; pop r13; pop r14; pop rbp; ret
> 0x00487801 : mov esp, ebx; mov rbx, rax; nop cs:[rax + rax]; call [r12]
> 0x0040ebc3 : lea esp, [rbx + rax*8 + 8]; nop [rax + rax]; call [rbx]
> 0x00400c3e : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact