ropshell> use a6089b7b358e577e615be0026349e767 (download)
name         : libc-2.31.so (x86_64/ELF)
base address : 0x22320
total gadgets: 18402

ropshell> suggest
call
    > 0x00023d08 : call rax
    > 0x000246bd : call rbx
    > 0x0003a7a7 : call rcx
    > 0x00023dbe : call rdx
    > 0x00025898 : call rsi
jmp
    > 0x00037fc9 : push rsp; ret
    > 0x00023fb5 : jmp rax
    > 0x00036540 : jmp rbx
    > 0x0002f93f : jmp rcx
    > 0x00023b00 : jmp rdx
load mem
    > 0x000731ac : mov eax, [rdx]; ret
    > 0x000c2f30 : mov eax, [rdi]; ret
    > 0x000c2ee0 : mov rax, [rdi + 0x20]; ret
    > 0x000e26a1 : mov eax, [rdx + 8]; ret
    > 0x000c2ee1 : mov eax, [rdi + 0x20]; ret
load reg
    > 0x0003be88 : pop rax; ret
    > 0x0002dfff : pop rbx; ret
    > 0x00033923 : pop rcx; ret
    > 0x000c770d : pop rdx; ret
    > 0x0002590f : pop rsi; ret
pop pop ret
    > 0x00023e9a : pop r12; ret
    > 0x000f50d9 : pop bx; pop rbp; ret
    > 0x0002590a : pop r12; pop r13; pop r14; ret
    > 0x0002378f : pop r12; pop r13; pop r14; pop r15; ret
    > 0x0002434e : pop r12; pop r13; pop r14; pop r15; pop rbp; ret
sp lifting
    > 0x00038cf7 : add rsp, 0x118; ret
    > 0x00038cf7 : add rsp, 0x118; ret
    > 0x0003bf01 : add rsp, 0x28; ret
    > 0x0004df6d : add rsp, 0x38; ret
    > 0x000feef7 : add rsp, 0x40; ret
stack pivoting
    > 0x00047e86 : xchg eax, esp; ret
    > 0x0007b184 : mov esp, eax; mov rax, r12; pop r12; ret
    > 0x00038a38 : mov rsp, r8; mov rbp, r9; jmp rdx
    > 0x000c602b : lea rsp, [rbp - 0x10]; pop r12; pop r13; pop rbp; ret
    > 0x000c602c : lea esp, [rbp - 0x10]; pop r12; pop r13; pop rbp; ret
syscall
    > 0x000550da : syscall ; ret
write mem
    > 0x00128fec : adc [rax], ebx; ret
    > 0x001286ec : adc [rax], ecx; ret
    > 0x001286fc : adc [rax], edx; ret
    > 0x000a3ab8 : adc [rbx], eax; ret
    > 0x00125cd4 : adc [rdx], ecx; ret