ROPSHELL 
ropshell> use 759fe22d089a9a6aed263afe9cc08e2b (download)
name         : chrome_elf.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 6099

ropshell> suggest
call
    > 0x1800016d9 : call rax
    > 0x180001599 : call rbx
    > 0x1800272da : call rcx
    > 0x180029803 : call rdx
    > 0x1800036ba : call rsi
jmp
    > 0x18000e9f4 : jmp rax
    > 0x180038f6a : jmp rcx
    > 0x1800310b5 : jmp rdx
    > 0x18003a342 : jmp rsi
    > 0x1800649cd : jmp rdi
load mem
    > 0x18000c3dd : mov rax, [rcx]; ret
    > 0x18000c3de : mov eax, [rcx]; ret
    > 0x18003b497 : mov eax, [rcx + 0x20]; ret
    > 0x18003b496 : mov eax, [r9 + 0x20]; ret
    > 0x180056e2a : movzx ecx, [rdx]; sub eax, ecx; ret
load reg
    > 0x18001870d : pop rax; ret
    > 0x180002a31 : pop rbx; ret
    > 0x180053680 : pop rcx; ret
    > 0x180001175 : pop rsi; ret
    > 0x1800010d8 : pop rdi; ret
pop pop ret
    > 0x180040e0a : pop r12; ret
    > 0x18004b837 : pop r12; pop rbp; ret
    > 0x180001727 : pop r12; pop r14; pop r15; ret
    > 0x1800010d1 : pop r12; pop r13; pop r14; pop r15; ret
    > 0x18000e091 : pop r12; pop r13; pop r14; pop r15; pop rbp; ret
sp lifting
    > 0x180040238 : add rsp, 0x18; ret
    > 0x180040238 : add rsp, 0x18; ret
    > 0x180002a62 : add rsp, 0x28; ret
    > 0x180001539 : add rsp, 0x38; ret
    > 0x18002708d : add rsp, 0x48; ret
stack pivoting
    > 0x180006144 : xchg eax, esp; ret
    > 0x18005c0dd : mov rsp, r11; pop r14; ret
    > 0x18005c0de : mov esp, ebx; pop r14; ret
    > 0x1800411eb : lea rsp, [rbp + 0x10]; pop r15; pop r14; pop rbp; ret
    > 0x1800411ec : lea esp, [rbp + 0x10]; pop r15; pop r14; pop rbp; ret
write mem
    > 0x180003984 : add [rax], ecx; ret
    > 0x1800406a8 : add [rax + 3], edi; ret
    > 0x1800097d5 : adc [rdx + 8], eax; ret
    > 0x18004360f : adc [rcx], eax; mov rax, r11; ret
    > 0x1800136cb : adc [rdi], ecx; mov dh, 0xc2; ret

© 2014 - 2019 - Powered by ROPEME | Contact