ropshell> use 6a9ba29fad2b9881c33763e895caeb98 (download)
name         : libc.so (arm/ELF)
base address : 0x163b0
total gadgets: 2598

ropshell> suggest "load mem"
> 0x00062ca3 : ldr r0, [r2]; pop {r4, r5, r7, pc}
> 0x0002b121 : ldr r0, [r4]; pop {r4, r5, r6, pc}
> 0x00046a5f : ldr r0, [r5]; pop {r4, r5, r6, pc}
> 0x0001f7b3 : ldrh.w r2, [ip]; pop {r7, pc}
> 0x00018187 : ldrh r1, [r0, r4]; pop {r0, r4, r5, pc}
> 0x00018d05 : ldr r0, [r1]; bx lr
> 0x0002b039 : ldr r2, [r0, #0x58]; pop {r4, r5, r6, pc}
> 0x0001bb2f : ldr r5, [r0, #0x58]; pop {r4, pc}
> 0x00018175 : ldr r3, [pc, #4]; pop {r0, r4, r5, pc}
> 0x00074dcd : ldrsh pc, [r0, #0xf9]!; bx pc
> 0x00027995 : ldr r3, [r0]; cmp r3, #0; it eq; pop {r4, r5, r6, pc}
> 0x0003f65d : ldrh r1, [r2, #0x10]; movs r3, r0; pop {r0, r4, r7, pc}
> 0x00072cda : ldrne r0, [r3, r0]; moveq r0, r3; bx lr
> 0x0003f651 : ldrh r1, [r3, #0x10]; movs r3, r0; pop {r3, r4, r5, r7, pc}
> 0x000522a3 : ldr r3, [r4, #0x24]; blx r3
> 0x0003b4b5 : ldr.w r1, [fp]; mov r0, r7; blx r1
> 0x0001c023 : ldr r0, [pc, #0xc]; add r0, pc; pop {r7, pc}
> 0x00038ad7 : ldr r1, [r4]; movw r2, #0xd245; cmp r1, r2; it ne; pop {r4, pc}
> 0x000484d5 : ldrh r7, [r5, #0x38]; movs r0, #0x10; bx lr
> 0x0003def1 : ldr.w r1, [ip, #0x10]; cmp r1, #0; it ne; pop {r4, pc}
> 0x0003004b : ldr.w r3, [ip]; cmp r3, r1; itt eq; mov r0, ip; bx lr
> 0x00074282 : ldr ip, [pc, #4]; add ip, pc, ip; bx ip
> 0x0005c92d : ldr r6, [r4, r7]; movs r2, r0; smull r0, r0, lr, r1; pop {r4, r5, r7, pc}
> 0x0005a507 : ldr r0, [r7]; str r0, [sp]; mov r0, r5; blx r6
> 0x0005a0bd : ldr.w r0, [r8]; str r0, [sp]; mov r0, r7; blx r5
> 0x00031ca1 : ldr r7, [pc, #0x200]; itt eq; movs r0, #0x20; bx lr
> 0x0002ff53 : ldr.w r3, [r2, r0, lsl #2]; cmp r3, #0; it eq; bx lr
> 0x00072d22 : ldr r3, [r5, #0x10]; mov r1, r5; mov r2, r4; blx r3
> 0x00059f93 : ldr.w r2, [r8]; strd r4, r2, [sp]; mov r2, sb; blx r5
> 0x00036f5d : ldr r1, [pc, #0x28]; add r1, pc; strd r1, r1, [r4]; pop {r4, pc}
> 0x0004f8cd : ldr r2, [pc, #0x14]; add r2, pc; str r2, [r1, #0x24]; pop {r4, r5, r7, pc}
> 0x0003f64d : ldrh r1, [r5, #0x12]; movs r3, r0; ldrh r1, [r3, #0x10]; movs r3, r0; pop {r3, r4, r5, r7, pc}
> 0x00035aab : ldr r1, [r6, #0xc]; orr.w r2, r4, r5; str.w r2, [r1, r0, lsl #2]; pop {r4, r5, r6, pc}
> 0x000192c1 : ldr r3, [r6, #4]; mov r0, r4; mov r1, r5; movs r2, #0x6e; blx r3
> 0x00059f91 : ldr r5, [r2, #0x14]; ldr.w r2, [r8]; strd r4, r2, [sp]; mov r2, sb; blx r5
> 0x00035929 : ldr.w r2, [r3, r7, lsl #2]; add.w r3, r3, r7, lsl #2; and r0, r2, #0; bx pc
> 0x0006433d : ldr r4, [pc, #0x80]; movs r2, r0; ldr r2, [pc, #0x290]; movs r2, r0; blx r4
> 0x0005229f : ldr r2, [r4, #0x14]; ldr r0, [r4, #0x1c]; ldr r3, [r4, #0x24]; blx r3
> 0x0004b1ed : ldr r2, [r6]; add r1, pc; cmp r2, #0; it ne; adds r1, r2, r3; str r1, [r4, #0x28]; pop {r4, r5, r6, pc}
> 0x0005a407 : ldr.w r7, [fp, #0x10]; ldr r0, [r5]; str r0, [sp]; mov r0, sl; mov r3, r1; blx r7
> 0x00018c7f : ldr r2, [r1, #0x4c]; str r2, [r0, #0xc]; str r0, [r1, #0x4c]; movs r0, #0; pop {r4, r5, r6, pc}
> 0x0005807d : ldr r3, [r1]; str r2, [sp]; movs r2, #0; ldr r1, [r0]; mov r0, r5; lsls r3, r3, #0xc; blx r7
> 0x0005929d : ldr r2, [r5]; str r2, [sp]; lsls r2, r4, #0xc; ldr r0, [r0]; ldr r1, [r0]; mov r0, r7; blx ip
> 0x0003f649 : ldrh r5, [r3, #0x12]; movs r3, r0; ldrh r1, [r5, #0x12]; movs r3, r0; ldrh r1, [r3, #0x10]; movs r3, r0; pop {r3, r4, r5, r7, pc}
> 0x000192bd : ldr r6, [pc, #0x54]; add r6, pc; ldr r3, [r6, #4]; mov r0, r4; mov r1, r5; movs r2, #0x6e; blx r3