ROPSHELL 
ropshell> use 4f17fb81148f7c476f9b4fa2230ac11e (download)
name         : faggin (i386/ELF)
base address : 0x80482d0
total gadgets: 7016

ropshell> suggest
call
    > 0x080487b3 : call eax
    > 0x0804c6a8 : call ebx
    > 0x080485a6 : call ecx
    > 0x080487ed : call edx
    > 0x08071197 : call esi
jmp
    > 0x080bee06 : push esp; ret
    > 0x08052eb4 : jmp eax
    > 0x0805eb14 : jmp ebx
    > 0x0805ddcf : jmp ecx
    > 0x080499ac : jmp edx
load mem
    > 0x080576ab : movzx eax, [edx]; pop ebx; ret
    > 0x080bed70 : mov eax, [edx + 0x4c]; ret
    > 0x080a3fc5 : mov eax, [ecx]; pop ebx; pop esi; ret
    > 0x08057319 : mov eax, [ecx + 8]; sub eax, edx; ret
    > 0x08048a0f : movzx eax, [esi + eax]; pop esi; pop ebx; pop ebp; ret
load reg
    > 0x080bedf6 : pop eax; ret
    > 0x0804ff09 : pop ebx; ret
    > 0x080725aa : pop edx; ret
    > 0x08048453 : pop esi; ret
    > 0x080484a0 : pop edi; ret
pop pop ret
    > 0x080bedf6 : pop eax; ret
    > 0x080489b1 : pop ebx; pop ebp; ret
    > 0x080a8585 : pop ebp; pop esi; pop edi; ret
    > 0x080a81ca : pop eax; pop ebx; pop esi; pop edi; ret
    > 0x0809c5d4 : pop eax; pop ebx; pop esi; pop edi; pop ebp; ret
sp lifting
    > 0x0808135d : add esp, 0x14; ret
    > 0x0808135d : add esp, 0x14; ret
    > 0x0804b9fa : add esp, 0x2c; ret
stack pivoting
    > 0x0804b0d6 : xchg eax, esp; ret
    > 0x080bf032 : mov esp, ecx; ret
    > 0x0804a6e7 : lea esp, [ebp - 8]; pop esi; pop ebx; pop ebp; ret
    > 0x080a8e61 : leave ; ret
syscall
    > 0x08075d50 : int 0x80; ret
write mem
    > 0x0804a240 : add [eax], ecx; ret
    > 0x08083176 : add [ecx], eax; ret
    > 0x08056701 : add [ecx], edi; ret
    > 0x080b0de9 : add [edi], ecx; inc esp; ret 0x8b
    > 0x08069701 : add [eax + 0x5f028d02], ecx; ret

© 2014 - 2019 - Powered by ROPEME | Contact