ROPSHELL 
ropshell> use 5898fac5d2680d0d8fefdadd632b7188 (download)
name         : libc.so.6 (x86_64/ELF)
base address : 0x22630
total gadgets: 15174

ropshell> suggest "load reg"
> 0x00036174 : pop rax; ret
> 0x0002fdaf : pop rbx; ret
> 0x00142c92 : pop rdx; ret
> 0x0002601f : pop rsi; ret
> 0x00023b6a : pop rdi; ret
> 0x000226c0 : pop rbp; ret
> 0x0002f70a : pop rsp; ret
> 0x0002f709 : pop r12; ret
> 0x00025b9d : pop r13; ret
> 0x0002601e : pop r14; ret
> 0x00023b69 : pop r15; ret
> 0x0010257e : pop rcx; pop rbx; ret
> 0x00043b4a : pop r8; movups xmm[rdi + 0x68], xmm0; ret
> 0x001498b8 : pop r11; mov eax, r8d; pop rbp; pop r12; ret
> 0x0010c1c3 : mov rax, [rsp]; add rsp, 0x28; ret
> 0x0010e9d6 : mov eax, [rsp]; add rsp, 0x18; ret
> 0x001045f6 : mov ecx, [rsp]; call rax
> 0x0011a872 : mov edi, [rsp]; call rbx
> 0x000a8a48 : mov rdx, [rsp + 0x10]; mov [rax], rdx; ret
> 0x000bde42 : mov rsi, [rsp + 0x10]; call rbx
> 0x0016097e : mov rdi, [rsp + 0x18]; call rax
> 0x000caf8c : mov r9, [rsp + 0x10]; call r14
> 0x000a8a49 : mov edx, [rsp + 0x10]; mov [rax], rdx; ret
> 0x000bde43 : mov esi, [rsp + 0x10]; call rbx
> 0x00150abf : mov rcx, [rsp + 0x10]; mov rdi, r15; call rcx
> 0x00044917 : mov rbx, [rsp + 8]; nop [rax]; mov rsi, r13; mov rdi, r14; mov rdx, r12; call rbp
> 0x00044918 : mov ebx, [rsp + 8]; nop [rax]; mov rsi, r13; mov rdi, r14; mov rdx, r12; call rbp
> 0x000456da : mov r12, [rsp + 0x20]; nop ; mov rax, [rsp]; mov rdx, r14; mov rsi, r13; mov rdi, r12; call rax
> 0x000456db : mov esp, [rsp + 0x20]; nop ; mov rax, [rsp]; mov rdx, r14; mov rsi, r13; mov rdi, r12; call rax
> 0x00150a9e : mov r15, [rsp + 0x68]; mov rdi, [rax]; mov rsi, r15; mov rax, [rdi + 0x38]; call [rax + 8]
> 0x0002f146 : mov r8, [rsp + 0x48]; mov rcx, [rsp + 0x18]; mov rsi, [rsp + 0x40]; mov rdi, [rsp + 0x38]; call r15
> 0x00044832 : mov r13, [rsp + 0x10]; add r13, [rsp + 8]; lea r15, [rax + r14]; mov rdx, rbp; mov rsi, r12; mov rdi, r13; call rbx
> 0x00044833 : mov ebp, [rsp + 0x10]; add r13, [rsp + 8]; lea r15, [rax + r14]; mov rdx, rbp; mov rsi, r12; mov rdi, r13; call rbx

© 2014 - 2019 - Powered by ROPEME | Contact