ROPSHELL 
ropshell> use 4c62d0bf24a7665ea98fba97c6ff8155 (download)
name         : NetAnts.exe (i386/PE)
base address : 0x401000
total gadgets: 10889

ropshell> suggest
call
    > 0x004037ee : call eax
    > 0x004024e0 : call ebx
    > 0x00435bac : call ecx
    > 0x0040105e : call esi
    > 0x0040134c : call edi
jmp
    > 0x0041e305 : jmp eax
    > 0x0045a42b : jmp ecx
    > 0x00410c63 : jmp esi
    > 0x0040bc34 : jmp [eax]
    > 0x0040aa3e : jmp [ebx]
load mem
    > 0x0044ca62 : mov eax, [esi]; pop esi; ret 4
    > 0x0044bf4f : mov eax, [ecx + 0x31c]; ret
    > 0x0045b1e4 : mov eax, [edx + 4]; ret
    > 0x0044d068 : mov eax, [esi + 0x24]; pop esi; ret
    > 0x0043aaa5 : mov eax, [ebp + 8]; pop ebp; ret 0x20
load reg
    > 0x0043f879 : pop eax; ret
    > 0x0040521c : pop ebx; ret
    > 0x004041d6 : pop ecx; ret
    > 0x00451df2 : pop edx; ret
    > 0x00409778 : pop esi; ret
pop pop ret
    > 0x0043f879 : pop eax; ret
    > 0x0045e75f : pop eax; pop ebp; ret
    > 0x0044c240 : pop eax; pop edi; pop esi; ret
    > 0x00458e07 : pop ebp; pop ebx; pop ecx; pop ecx; ret
    > 0x00430993 : pop ebp; pop esi; pop edi; pop ebx; pop ecx; ret
sp lifting
    > 0x00413cc7 : add esp, 0x10; ret
    > 0x00413cc7 : add esp, 0x10; ret
    > 0x00450a50 : add esp, 0x20; ret
    > 0x0042fa25 : add esp, 0x30; ret
    > 0x0043bfa7 : add esp, 0x4000; ret
stack pivoting
    > 0x0042cd9b : xchg eax, esp; ret
    > 0x00450a2c : mov esp, ebp; pop ebp; ret
    > 0x00457e9f : lea esp, [eax]; ror [eax + eax - 0x75], 1; ret
    > 0x0044fe84 : mov esp, ecx; mov ecx, [eax]; mov eax, [eax + 4]; push eax; ret
    > 0x0040109c : leave ; ret
write mem
    > 0x00417b77 : adc [ebx], edi; ret
    > 0x0044bcd4 : add [eax + 0x5e], ebx; ret
    > 0x00448ad4 : add [esi + 0x5b], ebx; ret
    > 0x0044f424 : add [edi + 0x5e], ebx; ret
    > 0x0044a419 : add [eax], ecx; pop edi; pop esi; ret 0xc

© 2014 - 2019 - Powered by ROPEME | Contact