ROPSHELL 
ropshell> use 96fbf81515c4a05439ee8cf47aa636ba (download)
name         : ntdll.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 6574

ropshell> suggest "load reg"
> 0x18000520c : pop rax; ret
> 0x180001297 : pop rbx; ret
> 0x180091529 : pop rcx; ret
> 0x180001f9a : pop rdx; ret
> 0x18000123d : pop rsi; ret
> 0x180001309 : pop rdi; ret
> 0x1800010ff : pop rbp; ret
> 0x180004359 : pop rsp; ret
> 0x180066a3b : pop r8; ret
> 0x18008e9d8 : pop r11; ret
> 0x180004358 : pop r12; ret
> 0x180004623 : pop r13; ret
> 0x180003fbe : pop r14; ret
> 0x180007d04 : pop r15; ret
> 0x18008e9d6 : pop r10; pop r11; ret
> 0x18008e9d4 : pop r9; pop r10; pop r11; ret
> 0x18002cffe : mov rbx, [rsp + 0x10]; ret
> 0x18007ddb9 : mov rsi, [rsp + 0x10]; ret
> 0x180007fad : mov rdi, [rsp + 0x10]; ret
> 0x18002cfff : mov ebx, [rsp + 0x10]; ret
> 0x18007ddba : mov esi, [rsp + 0x10]; ret
> 0x180007fae : mov edi, [rsp + 0x10]; ret
> 0x1800a5748 : mov eax, [rsp]; add rsp, 8; ret
> 0x18002e77e : mov rax, [rsp + 0x38]; add rsp, 0x28; ret
> 0x1800a3c13 : mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x1800d5c00 : mov rcx, [rsp + 0x110]; call rax
> 0x180076ec4 : mov r12, [rsp + 0x38]; pop r15; pop r14; pop r13; ret
> 0x1800d5c01 : mov ecx, [rsp + 0x110]; call rax
> 0x180076ec5 : mov esp, [rsp + 0x38]; pop r15; pop r14; pop r13; ret
> 0x18010854f : mov rbp, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x1800a2b36 : mov r9, [rsp + 0x38]; add rsp, 0x48; jmp rax
> 0x180108550 : mov ebp, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x1800a3c0f : mov r10, [rsp]; mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x1800a3c10 : mov edx, [rsp]; mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x1800a2de8 : mov rdx, [rsp + 0x38]; mov [rsp + 0x48], rdx; add rsp, 0x48; ret
> 0x1800a2b31 : mov r8, [rsp + 0x30]; mov r9, [rsp + 0x38]; add rsp, 0x48; jmp rax

© 2014 - 2019 - Powered by ROPEME | Contact