ropshell> use a412ef3b8e569addaa36f588f1ca46ce (download) name : libc-2.19.so (i386/ELF) base address : 0x17420 total gadgets: 16771
ropshell> suggest call > 0x00019a82 : call eax > 0x0001fb0f : call ebx > 0x0002bbd6 : call ecx > 0x0001b177 : call edx > 0x000199f8 : call esi jmp > 0x00125196 : push esp; ret > 0x0001a910 : jmp eax > 0x0004f168 : jmp ebx > 0x000521c6 : jmp ecx > 0x0002c739 : jmp edx load mem > 0x00065e67 : mov eax, [edx]; ret > 0x0001b5eb : mov eax, [ecx + 0x3664]; ret > 0x000d2c47 : mov eax, [edx + 8]; pop ebx; pop esi; ret > 0x000fc89f : mov ebp, [ecx + 0xc]; jmp edx > 0x00137232 : mov ecx, [eax]; mov [edx], ecx; pop ebx; ret load reg > 0x00026ab8 : pop eax; ret > 0x000198ae : pop ebx; ret > 0x0002e12c : pop edx; ret > 0x00019606 : pop esi; ret > 0x0001749a : pop edi; ret pop pop ret > 0x00026ab8 : pop eax; ret > 0x0014007b : pop ebp; pop ebx; ret > 0x000a6fa7 : pop eax; pop edi; pop esi; ret > 0x0004128a : pop eax; pop ebx; pop esi; pop edi; ret > 0x0001d518 : pop esp; pop ebx; pop esi; pop edi; pop ebp; ret sp lifting > 0x0007b681 : add esp, 0x100; ret > 0x0007b681 : add esp, 0x100; ret > 0x0001a5af : add esp, 0x24; ret > 0x000dae12 : add esp, 0x3c; ret > 0x00118325 : add esp, 0x4c; ret stack pivoting > 0x00098ba3 : xchg eax, esp; ret > 0x0002e1fd : mov esp, ecx; jmp edx > 0x001322bb : xchg esp, edi; jmp [esi - 0x70] > 0x0011716a : lea esp, [ebp - 8]; pop ebx; pop edi; pop ebp; ret > 0x00126ff8 : xchg esp, esi; inc [ebx - 0xf76d33c]; pop ebx; pop esi; pop edi; pop ebp; ret syscall > 0x000b7dc5 : call gs:[0x10]; ret > 0x000ebbf1 : int 0x80; pop ebp; pop edi; pop esi; pop ebx; ret write mem > 0x0009551c : add [eax], edx; ret > 0x0009553c : add [eax], esi; ret > 0x000896a1 : add [eax + 0x5f028d02], ecx; ret > 0x0008b1b5 : add [ebx + 0x5b5fffd8], eax; ret > 0x00107734 : adc [esi + 0x5f], ebx; ret