ROPSHELL 
ropshell> use 935dc3659569d8fae90f2e3ef60c24e9 (download)
name         : Player.dll (i386/PE)
base address : 0x10001000
total gadgets: 3076

ropshell> suggest "load reg"
> 0x10015ea1 : pop eax; ret
> 0x10004c2d : pop ebx; ret
> 0x1001af5c : pop edx; ret
> 0x10004998 : pop esi; ret
> 0x10003aea : pop edi; ret
> 0x10013a06 : pop ebp; ret
> 0x1001b3bd : pop esp; ret
> 0x10009f5b : pop ecx; cld ; ret 4
> 0x1001de70 : mov eax, [esp + 4]; mul ecx; ret 0x10
> 0x1001df26 : mov ecx, [esp + 4]; sub eax, ecx; ret
> 0x1001db85 : mov ebx, [esp + 0x18]; push ecx; push edx; push ebx; call esi
> 0x10017965 : mov edx, [esp + 0x20]; pop ebp; pop edi; pop esi; pop ebx; inc [edx]; ret
> 0x100131eb : mov esi, [esp + 0x14]; push edi; push ebx; push esi; call ecx
> 0x100131e7 : mov edi, [esp + 0x1c]; mov esi, [esp + 0x14]; push edi; push ebx; push esi; call ecx
> 0x1000e5d3 : popal ; mov eax, [esp + 0x1c]; push ebx; push eax; mov esi, [ebp]; call [esi + 4]

© 2014 - 2019 - Powered by ROPEME | Contact