ropshell> use 706cde1f2c017ca18a0eb93400be8f07 (download)
name         : kidding (i386/ELF)
base address : 0x80482b0
total gadgets: 6775
ropshell> suggest
call
    > 0x08048793 : call eax
    > 0x0804a202 : call ebx
    > 0x08048586 : call ecx
    > 0x080487cd : call edx
    > 0x0806ddb7 : call esi
jmp
    > 0x080b8546 : push esp; ret
    > 0x08050184 : jmp eax
    > 0x0805bf44 : jmp ebx
    > 0x0805b1ff : jmp ecx
    > 0x0809ce21 : jmp edx
load mem
    > 0x080549eb : movzx eax, [edx]; pop ebx; ret
    > 0x080b84b0 : mov eax, [edx + 0x4c]; ret
    > 0x08099755 : mov eax, [ecx]; pop ebx; pop esi; ret
    > 0x08054659 : mov eax, [ecx + 8]; sub eax, edx; ret
    > 0x080616d0 : movzx ecx, [eax]; movzx eax, [edx]; sub eax, ecx; ret
load reg
    > 0x080b8536 : pop eax; ret
    > 0x0804f0fc : pop ebx; ret
    > 0x080583c9 : pop ecx; ret
    > 0x0806ec8b : pop edx; ret
    > 0x08048433 : pop esi; ret
pop pop ret
    > 0x080b8536 : pop eax; ret
    > 0x0809994c : pop ebx; pop edi; ret
    > 0x0809d695 : pop ebp; pop esi; pop edi; ret
    > 0x0809d2da : pop eax; pop ebx; pop esi; pop edi; ret
    > 0x08091d04 : pop eax; pop ebx; pop esi; pop edi; pop ebp; ret
sp lifting
    > 0x0807a68d : add esp, 0x14; ret
    > 0x0807a68d : add esp, 0x14; ret
    > 0x0804954a : add esp, 0x2c; ret
stack pivoting
    > 0x08048c16 : xchg eax, esp; ret
    > 0x080b8772 : mov esp, ecx; ret
    > 0x0804acd2 : lea esp, [ebp - 0xc]; pop ebx; pop esi; pop edi; pop ebp; ret
    > 0x080a578f : lea esp, [edx + edi*8 - 1]; jmp [esi - 0x77]
    > 0x080488b5 : leave ; ret
syscall
    > 0x0806f290 : int 0x80; ret
write mem
    > 0x0807c636 : add [ecx], eax; ret
    > 0x08053a41 : add [ecx], edi; ret
    > 0x080a6a50 : add [edi], ecx; inc esp; ret 0x8b
    > 0x08066b31 : add [eax + 0x5f028d02], ecx; ret
    > 0x0806c76b : add [ebx + 0x5e5b04c4], eax; ret