ropshell> use aeb31909457a3a05613ab5bf72df745f (download)
name         : ntdll.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 6203
ropshell> suggest "stack pivoting"
> 0x18000791c : xchg eax, esp; ret
> 0x180067ed2 : xchg esp, edi; ret 5
> 0x1800031f1 : mov rsp, r11; pop r14; ret
> 0x1800031f2 : mov esp, ebx; pop r14; ret
> 0x1800fdfe6 : lea rsp, [rbp + 0x10]; pop rbp; ret
> 0x1800fdfe7 : lea esp, [rbp + 0x10]; pop rbp; ret
> 0x18008f001 : xchg esp, ecx; inc [rbx]; add [rbx - 0x7af0fb01], al; ret
> 0x18003781f : leave ; ret