ropshell> use 50135faec9a232afe60f0628a2ba925d (download)
name         : etms (x86_64/ELF)
base address : 0x404ff0
total gadgets: 6941

ropshell> suggest
call
    > 0x004463de : call [rax - 0x366ffe15]; ret
    > 0x0040502c : call rax
    > 0x0043d7c2 : call rbx
    > 0x004a4f28 : call rcx
    > 0x0046eeba : call rdx
jmp
    > 0x004050ce : jmp rax
    > 0x004aefe3 : jmp rcx
    > 0x0042b4ec : jmp rdx
    > 0x0045ff61 : jmp rdi
    > 0x0047505f : jmp rsp
load mem
    > 0x004a9110 : mov rax, [rdi]; ret
    > 0x004a1e56 : mov eax, [rdi]; ret
    > 0x004bb2f1 : mov rax, [rdx + 0x18]; ret
    > 0x004b4fa1 : mov rax, [rdi + 0x10]; ret
    > 0x004bb2f2 : mov eax, [rdx + 0x18]; ret
load reg
    > 0x0046a265 : pop rax; ret
    > 0x004a1359 : pop rbx; ret
    > 0x00488902 : pop rdx; ret
    > 0x004a1948 : pop rsi; ret
    > 0x004a11d2 : pop rdi; ret
pop pop ret
    > 0x004a0c45 : pop r12; ret
    > 0x004a0e93 : pop r12; pop r13; ret
    > 0x004a1943 : pop r12; pop r13; pop r14; ret
    > 0x004a11cb : pop r12; pop r13; pop r14; pop r15; ret
    > 0x004c0b6d : pop rax; pop rbx; pop rbp; pop r12; pop r13; ret
sp lifting
    > 0x004bd43c : add rsp, 0x1008; ret
    > 0x004bd43c : add rsp, 0x1008; ret
    > 0x004c4a12 : add rsp, 0x208; ret
    > 0x004a859d : add rsp, 0x38; ret
    > 0x004a89a0 : add rsp, 0x408; ret
stack pivoting
    > 0x004516f5 : xchg eax, esp; add [rax], al; add cl, cl; ret
    > 0x004bc1bd : xchg esp, esi; call [rbp - 0x77]
    > 0x004b7916 : mov esp, edi; push rbp; push rbx; mov rbx, rsi; call rsi
    > 0x004c69ad : xchg esp, ebp; add [rax], al; add bl, al; mov eax, [rdi + 0xe8]; ret
    > 0x004ae770 : mov esp, esi; push rbp; push rbx; mov rbx, rdi; mov rdi, rsi; call [rbx + 8]
write mem
    > 0x004c30b5 : add [r8 + 2], eax; ret
    > 0x0041e631 : add [rax], r8; add cl, cl; ret
    > 0x00477e54 : adc [rcx + 3], ebp; add cl, cl; ret
    > 0x004c1427 : add [rbx + 4], eax; pop rbx; pop rbp; pop r12; ret
    > 0x004b769a : add [rdi + 0x10], rax; mov [rsi + 0x10], 0; ret