ROPSHELL 
ropshell> use 5beee896058eaac70641603639b76fd8 (download)
name         : libc.so (x86_64/ELF)
base address : 0x16500
total gadgets: 5842

ropshell> suggest "load reg"
> 0x00017df7 : pop rax; ret
> 0x000171c6 : pop rbx; ret
> 0x00017e8e : pop rcx; ret
> 0x00029f37 : pop rdx; ret
> 0x0001666d : pop rsi; ret
> 0x00016875 : pop rdi; ret
> 0x0001758c : pop rbp; ret
> 0x00017e39 : pop rsp; ret
> 0x0001cdd6 : pop r12; ret
> 0x0001c868 : pop r13; ret
> 0x0001666c : pop r14; ret
> 0x00016874 : pop r15; ret
> 0x000758e0 : mov rax, [rsp + 8]; ret
> 0x000758e1 : mov eax, [rsp + 8]; ret
> 0x00016847 : mov rdi, [rsp]; call r12
> 0x00016848 : mov edi, [rsp]; call r12
> 0x000759c7 : mov rdx, [rsp]; mov [rdi + 0x38], rdx; xor rax, rax; ret
> 0x00075b98 : mov r9, [rsp + 0x10]; mov [rsp + 8], r11; syscall ; ret
> 0x00075b99 : mov ecx, [rsp + 0x10]; mov [rsp + 8], r11; syscall ; ret
> 0x000759c8 : mov edx, [rsp]; mov [rdi + 0x38], rdx; xor rax, rax; ret
> 0x00075b93 : mov r8, [rsp + 8]; mov r9, [rsp + 0x10]; mov [rsp + 8], r11; syscall ; ret
> 0x0004de25 : pop r8; movdqu xmm0, xmm[rsi + 0x60]; movups xmm[rdi + 0x68], xmm0; movdqu xmm0, xmm[rsi + 0x70]; movups xmm[rdi + 0x78], xmm0; ret
> 0x00063b04 : mov rsi, [rsp + 0x40]; sub rbp, [rdi + rax*8]; mov [rsp + 0x20], rcx; mov rdi, rbp; call r15
> 0x00063b05 : mov esi, [rsp + 0x40]; sub rbp, [rdi + rax*8]; mov [rsp + 0x20], rcx; mov rdi, rbp; call r15

© 2014 - 2019 - Powered by ROPEME | Contact