ROPSHELL 
ropshell> use 8ee8363b834ad2c65a05bd40c8e4623e (download)
name         : libc.so.6 (x86_64/ELF)
base address : 0x212d0
total gadgets: 16852

ropshell> suggest
call
    > 0x00021bf5 : call rax
    > 0x00022bfd : call rbx
    > 0x0002d72a : call rcx
    > 0x0002caa3 : call rdx
    > 0x00022f01 : call rsi
jmp
    > 0x00024f54 : push rsp; ret
    > 0x00021f31 : jmp rax
    > 0x00099f62 : jmp rcx
    > 0x0003c885 : jmp rdx
    > 0x0002e367 : jmp rsi
load mem
    > 0x00081bcc : mov eax, [rdx]; ret
    > 0x000dfef0 : mov eax, [rdi]; ret
    > 0x000dfde0 : mov rax, [rdi + 0x20]; ret
    > 0x000dfde1 : mov eax, [rdi + 0x20]; ret
    > 0x0018ac73 : movzx ecx, [rsi]; sub eax, ecx; ret
load reg
    > 0x00043ae8 : pop rax; ret
    > 0x0002cc29 : pop rbx; ret
    > 0x00034da3 : pop rcx; ret
    > 0x00130546 : pop rdx; ret
    > 0x00023eea : pop rsi; ret
pop pop ret
    > 0x00130545 : pop r10; ret
    > 0x00021aa3 : pop r12; pop r13; ret
    > 0x00023ee5 : pop r12; pop r13; pop r14; ret
    > 0x000215b8 : pop r12; pop r13; pop r14; pop r15; ret
    > 0x000221fc : pop r12; pop r13; pop r14; pop r15; pop rbp; ret
sp lifting
    > 0x0003efcd : add rsp, 0x118; ret
    > 0x0003efcd : add rsp, 0x118; ret
    > 0x0003e342 : add rsp, 0x28; ret
    > 0x000e0c4d : add rsp, 0x38; ret
    > 0x00124d37 : add rsp, 0x40; ret
stack pivoting
    > 0x00046d7e : xchg eax, esp; ret
    > 0x0011cfa7 : mov esp, edx; call rbp
    > 0x0011d580 : mov esp, esi; call r15
    > 0x000e2da8 : lea rsp, [rbp - 0x10]; pop rbx; pop r12; pop rbp; ret
    > 0x000e2da9 : lea esp, [rbp - 0x10]; pop rbx; pop r12; pop rbp; ret
syscall
    > 0x000d2745 : syscall ; ret
write mem
    > 0x000bb528 : adc [rbx], eax; ret
    > 0x001429f0 : add [rcx], edi; ret
    > 0x00152e8b : adc [rdx], eax; ret
    > 0x0003e0d4 : adc [rdi], ecx; ret
    > 0x0010eae6 : adc [rax + 0x39], ecx; ret

© 2014 - 2019 - Powered by ROPEME | Contact