ropshell> use 9948e1ae899c4b5cc910fae8798a89db (download)
name         : tears (x86_64/RAW)
base address : 0x0
total gadgets: 7904
ropshell> suggest "load mem"
> 0x0008a9e6 : mov edi, [rdx]; ret
> 0x0000d28b : movzx eax, [rdx]; pop rbx; ret
> 0x000706a0 : mov eax, [rdx + 0x4c]; ret
> 0x000580e5 : mov eax, [rcx]; pop rbx; pop rsi; ret
> 0x0000cef9 : mov eax, [rcx + 8]; sub eax, edx; ret
> 0x00019fd0 : movzx ecx, [rax]; movzx eax, [rdx]; sub eax, ecx; ret
> 0x0004a0b9 : mov edx, [rax]; add esp, 8; mov eax, edx; pop rbx; ret
> 0x0001a219 : movzx ecx, [rsi + rcx]; sub eax, ecx; pop rsi; pop rdi; ret
> 0x00056827 : mov eax, [rsi]; add eax, [rdx]; call rax
> 0x00055d86 : mov eax, [rdi]; add eax, [rsi]; call rax
> 0x0005a7d2 : mov eax, [rbx + 0x14]; call [rbx]
> 0x00055441 : mov edx, [rbp + 0x4000001]; xor eax, eax; pop rbx; pop rsi; pop rdi; ret
> 0x00059d98 : mov edx, [rbx]; add edx, [rax + 4]; call rdx
> 0x00056557 : mov eax, [rsi + 8]; add eax, [rdi]; call rax
> 0x00019fe0 : movzx ecx, [rax + 1]; movzx eax, [rdx + 1]; sub eax, ecx; ret
> 0x0004a91e : mov ecx, [rdx + 0x24]; cmp ecx, [rdx + 0x28]; cmove eax, ecx; ret
> 0x0000c294 : mov edx, [rax + 0x94]; mov eax, [rdx + 0x20]; jmp rax
> 0x00066ce0 : mov edx, [rbx + 0xc]; mov [rdx], eax; add esp, 8; pop rbx; ret
> 0x00007abb : mov edi, [rax + 0x54]; push rdi; call [rdi + 0x10]
> 0x00034f93 : mov eax, [rbp + 0x10]; lea esp, [rbp - 0xc]; pop rbx; pop rsi; pop rdi; pop rbp; ret
> 0x0001a215 : movzx eax, [rdi + rcx]; movzx ecx, [rsi + rcx]; sub eax, ecx; pop rsi; pop rdi; ret
> 0x0005b746 : mov ebp, [rax + 0xc]; mov eax, [rsp + 8]; mov esp, ecx; jmp rdx
> 0x000085b2 : mov ebx, [rbp + 0x94]; push 0; push rdx; push rax; push rbp; call [rbx + 0x40]
> 0x0005a7cf : mov ecx, [rbx + 0x10]; mov eax, [rbx + 0x14]; call [rbx]
> 0x00009e1c : mov ecx, [rbp + 0x94]; push 0; push rdx; push rax; push rbp; call [rcx + 0x40]
> 0x00055d83 : mov esi, [rbp + 8]; mov eax, [rdi]; add eax, [rsi]; call rax
> 0x00056554 : mov edi, [rbp + 8]; mov eax, [rsi + 8]; add eax, [rdi]; call rax
> 0x00024742 : mov ebx, [rax]; mov [rdx], ebx; mov ebx, [rax + rcx - 4]; mov [rdx + rcx - 4], ebx; mov eax, edx; pop rbx; ret
> 0x000504d7 : mov ebx, [rdx + 0x10]; and ebx, eax; lea edx, [rdx + rbx*4]; add eax, [rdx + rcx]; pop rbx; pop rsi; ret
> 0x0003d1c8 : mov edx, [rdi + 0x14c]; sub esp, 4; mov ecx, [rdx + 0x94]; push rbx; push rax; push rdx; call [rcx + 0x1c]
> 0x0005b740 : mov esi, [rax + 4]; mov edi, [rax + 8]; mov ebp, [rax + 0xc]; mov eax, [rsp + 8]; mov esp, ecx; jmp rdx
> 0x00054fea : mov ecx, [rdx]; add edx, 8; mov [rax + 0x18c], edx; lea edx, [rdx + rcx*4]; mov [rax + 0x178], ecx; mov [rax + 0x188], edx; ret
> 0x0005a7c7 : mov edi, [rbx + 4]; mov [rbx], eax; mov edx, [rbx + 0xc]; mov ecx, [rbx + 0x10]; mov eax, [rbx + 0x14]; call [rbx]
> 0x0005a7c5 : mov esi, [rbx]; mov edi, [rbx + 4]; mov [rbx], eax; mov edx, [rbx + 0xc]; mov ecx, [rbx + 0x10]; mov eax, [rbx + 0x14]; call [rbx]