ROPSHELL 
ropshell> use 6e572f16276e144e5fe337ecbb804908 (download)
name         : comctl32.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 2330

ropshell> suggest "load reg"
> 0x180004657 : pop rax; ret
> 0x1800012ad : pop rbx; ret
> 0x18000284c : pop rsi; ret
> 0x180001d2e : pop rdi; ret
> 0x180001c55 : pop rbp; ret
> 0x180002d97 : pop rsp; ret
> 0x180002d96 : pop r12; ret
> 0x1800098bb : pop r13; ret
> 0x18000284b : pop r14; ret
> 0x180016042 : pop r15; ret
> 0x18008ab56 : pop rcx; push [rbp - 0x10]; ret
> 0x180007656 : mov rbx, [rsp + 8]; ret
> 0x180021f43 : mov rsi, [rsp + 0x10]; ret
> 0x180028d86 : mov rdi, [rsp + 0x10]; ret
> 0x180063478 : mov r14, [rsp + 0x20]; ret
> 0x180007657 : mov ebx, [rsp + 8]; ret
> 0x180021f44 : mov esi, [rsp + 0x10]; ret
> 0x180028d87 : mov edi, [rsp + 0x10]; ret
> 0x180070d6a : mov eax, [rsp]; add rsp, 0x18; ret
> 0x180078333 : mov rax, [rsp + 0x40]; add rsp, 0x28; ret
> 0x18008aaa3 : mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x18004e41e : mov edx, [rsp + 0x38]; mov eax, edx; add rsp, 0x28; ret
> 0x1800583ee : pop rdx; add eax, [rax]; nop [rax + rax]; add rsp, 0x28; ret
> 0x180005f4e : mov rcx, [rsp + 0x28]; mov eax, 1; mov [rcx], r9; ret
> 0x18008aa9f : mov r10, [rsp]; mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x180005f4f : mov ecx, [rsp + 0x28]; mov eax, 1; mov [rcx], r9; ret
> 0x18007e2d0 : mov rbp, [rsp + 0x18]; mov rsi, [rsp + 0x20]; mov rdi, [rsp + 0x28]; pop r15; ret
> 0x18007e2d1 : mov ebp, [rsp + 0x18]; mov rsi, [rsp + 0x20]; mov rdi, [rsp + 0x28]; pop r15; ret

© 2014 - 2019 - Powered by ROPEME | Contact