ROPSHELL 
ropshell> use b4a6a4549cfd5fdbb99b35aaec62429c (download)
name         : test.elf32 (i386/ELF)
base address : 0x10e0
total gadgets: 59

ropshell> suggest
call
    > 0x0000115c : call eax
    > 0x000011ad : call edx
    > 0x00001102 : call [eax + 0x51]
jmp
    > 0x00001110 : push esp; mov ebx, [esp]; ret
load reg
    > 0x00001683 : pop ebp; ret
    > 0x00001682 : pop edi; pop ebp; ret
    > 0x00001448 : popal ; cld ; ret
    > 0x00001681 : pop esi; pop edi; pop ebp; ret
    > 0x00001628 : mov eax, [esp]; ret
pop pop ret
    > 0x00001683 : pop ebp; ret
    > 0x00001682 : pop edi; pop ebp; ret
    > 0x00001681 : pop esi; pop edi; pop ebp; ret
    > 0x00001680 : pop ebx; pop esi; pop edi; pop ebp; ret
stack pivoting
    > 0x00001447 : lea esp, [ecx - 4]; ret
    > 0x00001440 : lea esp, [ebp - 0xc]; pop ecx; pop ebx; pop edi; pop ebp; lea esp, [ecx - 4]; ret
    > 0x00001161 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact