ROPSHELL 
ropshell> use 51ee1a76f55f7a2d8f5fd28b856f455b (download)
name         : rop2 (i386/RAW)
base address : 0x0
total gadgets: 10468

ropshell> suggest "stack pivoting"
> 0x00000f86 : xchg eax, esp; ret
> 0x00061063 : mov esp, ecx; ret
> 0x0000093d : lea esp, [ecx - 4]; ret
> 0x000581e8 : lea esp, [ebp - 8]; pop ebx; pop esi; pop ebp; ret
> 0x00036000 : lea esp, [edi + esi*8 - 1]; call [ebx - 0x7d]; ret
> 0x0004027d : lea esp, [eax]; idiv edi; jmp [ebp - 0x75]
> 0x000502b9 : xchg esp, esi; cmp dh, bh; call [eax - 0x18]
> 0x000452a6 : lea esp, [ebx + edi*8 - 1]; call [edx - 0x18]
> 0x00081a7b : push esp; push cs; pushal ; pop esp; or cl, [esi]; adc al, 0x41; ret
> 0x000007b5 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact