ROPSHELL 
ropshell> use 7e99a20c758abb5ae89c7aeea3a9aeb2 (download)
name         : kernel32.dll (i386/PE)
base address : 0x77de1000
total gadgets: 9044

ropshell> suggest
call
    > 0x77e12cba : call eax
    > 0x77de1ebd : call ebx
    > 0x77e1188c : call ecx
    > 0x77e31112 : call edx
    > 0x77de2117 : call esi
jmp
    > 0x77e42554 : push esp; ret
    > 0x77e0f751 : jmp eax
    > 0x77e3feae : jmp ebx
    > 0x77e65a41 : jmp ecx
    > 0x77e2d4e3 : jmp edx
load mem
    > 0x77e16985 : mov eax, [ecx]; add cl, cl; ret 0xc
    > 0x77e16091 : mov eax, [ebp + 0x10]; pop ebp; ret 0xc
    > 0x77e8518e : mov ebx, [edi + 0x7f6afffa]; pop eax; ret 0x18
    > 0x77e86bdd : mov edx, [ebp + 0x10]; pop ebp; ret 0xc
    > 0x77e1ddb5 : mov eax, [edi + 2]; add dh, dh; ret
load reg
    > 0x77e84e16 : pop eax; ret
    > 0x77e38047 : pop ebx; ret
    > 0x77e2c425 : pop esi; ret
    > 0x77dfff45 : pop ebp; ret
    > 0x77e0c338 : pop esp; ret
pop pop ret
    > 0x77e84e16 : pop eax; ret
    > 0x77e85059 : pop eax; pop ebp; ret
    > 0x77e49ab5 : pop edi; pop esi; pop ebp; ret
    > 0x77e49ab4 : pop ebx; pop edi; pop esi; pop ebp; ret
    > 0x77e49c4c : pop eax; pop ecx; pop ebp; pop ecx; pop ebx; ret 4
stack pivoting
    > 0x77e0e050 : xchg eax, esp; ret
    > 0x77e801f7 : mov esp, ebx; pop ebx; ret 0x20
    > 0x77e49b3c : mov esp, ebp; pop ebp; ret
    > 0x77e9127a : mov esp, edx; stc ; dec ecx; ret 4
    > 0x77e4bb12 : xchg esp, edi; jmp [esi - 0x75]
write mem
    > 0x77e7843b : add [ebx], eax; ret
    > 0x77e897c9 : add [ebx], edi; ret
    > 0x77e61c15 : add [eax], ecx; pop ebp; ret 0xc
    > 0x77e85515 : add [eax + 0x5d], ebx; ret 0xc
    > 0x77e1d203 : add [eax + 0x5d5e5f01], esi; ret 0x10

© 2014 - 2019 - Powered by ROPEME | Contact