ROPSHELL 
ropshell> use c47f7772a9b5220b1ce11f37dff07a0c (download)
name         : exp4 (i386/ELF)
base address : 0x420
total gadgets: 46

ropshell> suggest
call
    > 0x0000049f : call eax
    > 0x000004ed : call edx
    > 0x00000442 : call [eax + 0x51]
jmp
    > 0x00000450 : push esp; mov ebx, [esp]; ret
load reg
    > 0x0000063b : pop ebp; ret
    > 0x0000063a : pop edi; pop ebp; ret
    > 0x000005cd : popal ; cld ; ret
    > 0x00000639 : pop esi; pop edi; pop ebp; ret
    > 0x000005d0 : mov eax, [esp]; ret
pop pop ret
    > 0x0000063b : pop ebp; ret
    > 0x0000063a : pop edi; pop ebp; ret
    > 0x00000639 : pop esi; pop edi; pop ebp; ret
    > 0x00000638 : pop ebx; pop esi; pop edi; pop ebp; ret
stack pivoting
    > 0x000005cc : lea esp, [ecx - 4]; ret
    > 0x000005c6 : lea esp, [ebp - 8]; pop ecx; pop ebx; pop ebp; lea esp, [ecx - 4]; ret
    > 0x000004f5 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact