ROPSHELL 
ropshell> use 499fb521a0f4d635f3c1db514920eadd (download)
name         : kernel32.dll (x86_64/RAW)
base address : 0x0
total gadgets: 2813

ropshell> suggest "load reg"
> 0x000099c2 : pop rax; ret
> 0x00000798 : pop rbx; ret
> 0x00024192 : pop rdx; ret
> 0x000084ed : pop rsi; ret
> 0x000005a4 : pop rdi; ret
> 0x000020c3 : pop rbp; ret
> 0x00011858 : pop rsp; ret
> 0x00011857 : pop r12; ret
> 0x0000628f : pop r13; ret
> 0x000084ec : pop r14; ret
> 0x0000eaa8 : pop r15; ret
> 0x0000689f : pop rcx; add al, [rax]; ret
> 0x0001aea9 : mov rax, [rsp + 8]; ret
> 0x0000a645 : mov rbx, [rsp + 8]; ret
> 0x00076de8 : mov rdi, [rsp + 0x10]; ret
> 0x0001aeaa : mov eax, [rsp + 8]; ret
> 0x0000a646 : mov ebx, [rsp + 8]; ret
> 0x00076de9 : mov edi, [rsp + 0x10]; ret
> 0x0004eaa8 : mov rsi, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x0004eaa9 : mov esi, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x0000908d : movzx edx, [rsp + 0x68]; mov [rcx], edx; add rsp, 0x48; ret
> 0x0000843c : movzx ecx, [rsp + 0x60]; mov [rax], ecx; xor eax, eax; add rsp, 0x48; ret
> 0x0005d8a3 : mov rcx, [rsp + 0x30]; call [rip + 0x242e9]; nop [rax + rax]; add rsp, 0x28; ret
> 0x00073124 : mov rbp, [rsp + 0x10]; mov rsi, [rsp + 0x18]; mov rdi, [rsp + 0x20]; ret
> 0x00073125 : mov ebp, [rsp + 0x10]; mov rsi, [rsp + 0x18]; mov rdi, [rsp + 0x20]; ret

© 2014 - 2019 - Powered by ROPEME | Contact