ROPSHELL 
ropshell> use bb5cbffc096497506167bce1d9690ef2 (download)
name         : ntdll.dll (i386/PE)
base address : 0x7c901000
total gadgets: 6382

ropshell> suggest "load reg"
> 0x7c905df0 : pop eax; ret
> 0x7c901d68 : pop ebx; ret
> 0x7c96bd42 : pop ecx; ret
> 0x7c9013c3 : pop edx; ret
> 0x7c90219a : pop esi; ret
> 0x7c9028cb : pop edi; ret
> 0x7c90eb79 : pop ebp; ret
> 0x7c929bab : pop esp; ret
> 0x7c905db4 : popal ; ret 0
> 0x7c9028cd : mov eax, [esp + 4]; ret
> 0x7c902af1 : mov ecx, [esp + 4]; sub eax, ecx; ret
> 0x7c903697 : mov edx, [esp + 4]; xor eax, eax; shl edx, cl; ret 0xc
> 0x7c9030f6 : mov edi, [esp + 8]; mov ecx, [esp + 0xc]; mov eax, [esp + 0x10]; shr ecx, 2; rep stosd es:[edi], eax; pop edi; ret 0xc

© 2014 - 2019 - Powered by ROPEME | Contact