ROPSHELL 
ropshell> use 5da5aa94a1a049f03d31b96460690c12 (download)
name         : VBoxC_release.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 23367

ropshell> suggest "write mem"
> 0x1801aaabb : add [rax], ecx; ret
> 0x1801afc65 : adc [rbx], eax; ret
> 0x1801b0db3 : add [r8], eax; ret
> 0x180175879 : add [rbx], edi; pop rbp; ret
> 0x1801f9107 : adc [rdx + 0xe0], eax; ret
> 0x1801a93d3 : add [rbp + 0x3026e44], ecx; ret
> 0x18000ebdc : add [rdi], ecx; xchg eax, ebp; ret
> 0x1801b909a : add [r8], rax; add rsp, 0x48; ret
> 0x18016a885 : add [rax + 8], edi; pop rbp; ret
> 0x1801a9408 : add [rcx + 0x5d], eax; pop r12; ret
> 0x180098a83 : adc [rsi], ebx; sbb eax, [rax]; ret
> 0x1801ef293 : add [r15], ecx; scasd eax, [rdi]; ret
> 0x1801d394b : add [rbx + 0x67503e0], eax; mov eax, 1; ret
> 0x1800cebb9 : add [rbp + 0xc], esi; xor al, al; ret
> 0x1801aac42 : add [rax], edx; movaps xmm6, xmm[rsp + 8]; ret
> 0x180199608 : adc [rbx], ebp; ror [rbx - 0x3b7cb73e], 1; pop rax; ret
> 0x1801fa8c1 : adc [rdx], ecx; add [rcx + 0x63], cl; ret
> 0x1801dc1f8 : add [rbp + 0xf], eax; scasd eax, [rdi]; ret
> 0x1801dc1f7 : add [r13 + 0xf], eax; scasd eax, [rdi]; ret
> 0x1801db471 : add [rax], ebx; add [r8], r8b; xor eax, eax; ret
> 0x1801e0714 : adc [rbx], esi; movaps xmm6, xmm[rsp]; add rsp, 0x18; ret
> 0x180161081 : add [rbx + 0x8e8c1c2], ecx; mov [rcx + 2], al; ret
> 0x18002a625 : add [rdx + 1], edi; call [rax]; add rsp, 0x28; ret
> 0x180161080 : add [r11 + 0x8e8c1c2], ecx; mov [rcx + 2], al; ret
> 0x18001ad52 : add [rax], r8; add [rbp + 0x660575d2], al; xorps xmm0, xmm0; ret
> 0x1801a8d91 : add [rax + 0x43880243], ecx; add ecx, [rax - 0x75]; pop rsp; and al, 8; ret
> 0x1801a8d90 : add [r8 + 0x43880243], ecx; add ecx, [rax - 0x75]; pop rsp; and al, 8; ret
> 0x1800b884b : add [rcx], edi; sbb [rax], al; call [rax]
> 0x1800c95e5 : adc [rax + 0x84b8d48], edx; mov rax, [rcx]; call [rax + 0x10]
> 0x1801d0deb : add [rcx], eax; add [rax], al; cmp eax, ecx; cmovg eax, ecx; mov rbx, [rsp + 8]; ret
> 0x18002fa26 : add [rdi + 0x21], esi; lea eax, [r8 + rdx*2]; mov [r9], eax; xor eax, eax; ret
> 0x18006ed5e : adc [rax + r8], r11; nop ; mov rax, [rbx]; mov rcx, rbx; call [rax + 0x10]
> 0x18006ed5f : adc [rax + rax], ebx; nop ; mov rax, [rbx]; mov rcx, rbx; call [rax + 0x10]
> 0x1800ac93e : add [rbx], ecx; add [rax - 0x376474b8], dl; add [rax], al; add [rax - 0x75], cl; cmovs eax, [rbp + 0x480d74c9]; mov eax, [rcx]; call [rax + 0x10]

© 2014 - 2019 - Powered by ROPEME | Contact