ROPSHELL 
ropshell> use 8a200ad4d8e8485387773a0dd066c622 (download)
name         : a.out (x86_64/ELF)
base address : 0x4004c0
total gadgets: 53

ropshell> suggest
call
    > 0x004005ae : call rax
    > 0x004005b5 : call [rbp + 0x48]
    > 0x00400689 : call [r12 + rbx*8]
    > 0x00400605 : call [rax + 0x4855c3c9]; mov ebp, esp; mov [rbp - 4], 1; jmp rsp
jmp
    > 0x00400515 : jmp rax
    > 0x00400614 : jmp rsp
load reg
    > 0x004006a3 : pop rdi; ret
    > 0x00400520 : pop rbp; ret
    > 0x004006a2 : pop r15; ret
    > 0x004006a1 : pop rsi; pop r15; ret
    > 0x004006a0 : pop r14; pop r15; ret
pop pop ret
    > 0x004006a2 : pop r15; ret
    > 0x004006a0 : pop r14; pop r15; ret
    > 0x0040069e : pop r13; pop r14; pop r15; ret
    > 0x0040069c : pop r12; pop r13; pop r14; pop r15; ret
    > 0x0040069b : pop rbp; pop r12; pop r13; pop r14; pop r15; ret
stack pivoting
    > 0x00400607 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact