ROPSHELL 
ropshell> use b4e7b22eca8e964252f1ccf8b96a48d4 (download)
name         : main (x86_64/ELF)
base address : 0x119ba50
total gadgets: 4383

ropshell> suggest
call
    > 0x0119f3d9 : call rax
    > 0x011a33ba : call rsi
    > 0x011aeab3 : call rbp
    > 0x011d665a : call rsp
    > 0x011d6659 : call r12
jmp
    > 0x0119c4ad : jmp rax
    > 0x011c3007 : jmp rbx
    > 0x0119e30f : jmp rcx
    > 0x011ab481 : jmp rdx
    > 0x011bb003 : jmp rsi
load mem
    > 0x011d649f : mov rax, [rcx]; add rax, rdi; dec rax; cmp rsi, rax; setbe al; ret
    > 0x011d64a0 : mov eax, [rcx]; add rax, rdi; dec rax; cmp rsi, rax; setbe al; ret
    > 0x011aa578 : mov rax, [rdi + rsi]; movzx eax, [rax + rdx]; pop rbp; ret
    > 0x011aa579 : mov eax, [rdi + rsi]; movzx eax, [rax + rdx]; pop rbp; ret
    > 0x011d6220 : mov rax, [r9 + 0x18]; mov ecx, 2; pop rbx; pop r14; pop rbp; jmp rax
load reg
    > 0x0119bbfb : pop rbp; ret
    > 0x0119c218 : pop rbx; pop rbp; ret
    > 0x0119e2da : pop rsi; pop rbp; ret
    > 0x0119bbfa : pop rdi; pop rbp; ret
    > 0x0119e2d9 : pop r14; pop rbp; ret
pop pop ret
    > 0x0119bbfb : pop rbp; ret
    > 0x0119e2d9 : pop r14; pop rbp; ret
    > 0x0119bbf7 : pop r14; pop r15; pop rbp; ret
    > 0x0119c328 : pop r12; pop r14; pop r15; pop rbp; ret
    > 0x0119bbf3 : pop r12; pop r13; pop r14; pop r15; pop rbp; ret
stack pivoting
    > 0x011ab583 : xchg eax, esp; ret
    > 0x011a33b7 : mov esp, esi; call r14
    > 0x011a45ec : mov esp, eax; call [r11]
    > 0x011c5d9c : mov esp, edx; call [r10 + 0x10]
    > 0x011a8c6e : mov esp, ecx; mov rcx, r8; call [r9]
syscall
    > 0x011aa926 : syscall ; pop rbp; ret
write mem
    > 0x0119c236 : adc [rdi], eax; ret
    > 0x011a404f : add [rdi], ecx; xchg eax, edx; ret
    > 0x011aa950 : adc [rdi + 0x18], eax; pop rbp; ret
    > 0x011ab0ed : add [rcx + 0xf], eax; xchg eax, edx; ret
    > 0x011ae1c9 : adc [rbx + 0x28], eax; add rsp, 8; pop rbx; pop rbp; ret

© 2014 - 2019 - Powered by ROPEME | Contact