ropshell> use bb2fdff4958e318f8611275bf6ceda9e (download)
name : F42D50993531154DDA374C00C0B76E86F7D2354DA329E03FF3E98B64F5095F8F00.blob (x86_64/PE)
base address : 0x180001000
total gadgets: 2714
ropshell> suggest
call
> 0x180046c80 : call rsi
> 0x18002ab5f : call [rax]
> 0x180007e8b : call [rbx]
> 0x1800094f0 : call [rcx]
> 0x18000f284 : call [rsi]
jmp
> 0x18005806d : jmp rax
> 0x1800032cf : jmp rcx
> 0x180001723 : jmp rdi
> 0x180067e63 : push rsp; add eax, [rax]; ret
> 0x180010c27 : jmp [rax]
load mem
> 0x180019089 : mov rax, [rcx + 0x20]; ret
> 0x180068260 : mov eax, [rcx + 0x10]; ret
> 0x18007e3fb : mov rax, [rdx + 0x18]; add rax, rcx; ret
> 0x18007e3fc : mov eax, [rdx + 0x18]; add rax, rcx; ret
> 0x18004f670 : mov esi, [rax]; add al, 0; add al, ch; ret 8
load reg
> 0x1800131c0 : pop rax; ret
> 0x180001cc1 : pop rbx; ret
> 0x180026b82 : pop rdx; ret
> 0x18000132c : pop rsi; ret
> 0x180001054 : pop rdi; ret
pop pop ret
> 0x180010a7d : pop r12; ret
> 0x18000c723 : pop r12; pop rbp; ret
> 0x180023cbd : pop r12; pop rbp; pop rbx; ret
> 0x18000329e : pop r12; pop rdi; pop rsi; pop rbp; ret
> 0x180001cbc : pop r12; pop rdi; pop rsi; pop rbp; pop rbx; ret
sp lifting
> 0x18001cc80 : add rsp, 0x168; ret
> 0x18001cc80 : add rsp, 0x168; ret
> 0x18000cc5c : add rsp, 0x28; ret
> 0x18000ad0a : add rsp, 0x38; ret
> 0x180001124 : add rsp, 0x48; ret
stack pivoting
> 0x180038ef4 : xchg eax, esp; ret
> 0x180032ad5 : mov rsp, r11; pop r14; ret
> 0x180032ad6 : mov esp, ebx; pop r14; ret
> 0x180048199 : push rbx; add al, [rcx - 0x77]; sbb [rax - 0x75], ecx; pop rsp; and al, 8; ret
> 0x18001a7c2 : leave ; ret
syscall
> 0x180084474 : int 0x80; adc al, 0; add [rbp + 0x2e], dh; ret
write mem
> 0x18004e18a : adc [rcx], eax; ret
> 0x180074848 : add [rax + 0xf], ecx; ret
> 0x1800130dc : adc [rcx + 0x20], eax; ret
> 0x180074847 : add [r8 + 0xf], ecx; ret
> 0x18003f352 : add [rdi], ecx; xchg eax, ebp; ret