ROPSHELL 
ropshell> use 493eabdc44937bce31b50ce24171469e (download)
name         : IDA1.exe (i386/RAW)
base address : 0x0
total gadgets: 61

ropshell> suggest
call
    > 0x0000044c : call eax
    > 0x00000770 : call [eax]
jmp
    > 0x00000b7b : jmp eax
    > 0x0000066a : jmp ecx
load mem
    > 0x00000869 : mov ecx, [eax + 4]; jmp ecx
    > 0x00000b76 : mov ecx, [eax]; mov eax, [eax + 4]; jmp eax
load reg
    > 0x00000736 : pop ebp; ret
    > 0x000007c7 : pop ebx; pop ebp; ret
    > 0x0000092b : pop edi; pop ebp; ret
    > 0x0000092a : pop esi; pop edi; pop ebp; ret
pop pop ret
    > 0x00000736 : pop ebp; ret
    > 0x000007c7 : pop ebx; pop ebp; ret
    > 0x000007c6 : pop ebx; pop ebx; pop ebp; ret
    > 0x00000929 : pop ebx; pop esi; pop edi; pop ebp; ret
stack pivoting
    > 0x0000045b : mov esp, ebp; pop ebp; ret 4
    > 0x00000926 : lea esp, [ebp - 0xc]; pop ebx; pop esi; pop edi; pop ebp; ret
    > 0x00000b74 : mov esp, ecx; mov ecx, [eax]; mov eax, [eax + 4]; jmp eax
    > 0x00000703 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact