ropshell> use c8fda672a793b2a9a22e7acb1e1a02fb (download)
name         : libc.so (arm/ELF)
base address : 0xc9e0
total gadgets: 1959

ropshell> suggest "load mem"
> 0x000299e5 : ldr r0, [r4]; pop {r3, r4, r5, pc}
> 0x0002c567 : ldrh r2, [r0, r2]; pop {r2, r7, pc}
> 0x0002d8f5 : ldrh r4, [r0, #0x18]; pop {r3, r4, r5, r6, r7, pc}
> 0x000269df : ldr r0, [r1, #4]; pop {r4, r5, pc}
> 0x0000d0b1 : ldr r3, [r1]; blx r3
> 0x000168d5 : ldr r1, [r3]; blx r6
> 0x000169e3 : ldr r1, [r7]; blx r6
> 0x0000f06b : ldr r0, [pc, #0x38]; pop {r3, pc}
> 0x0001371d : ldrh r0, [r6, #0x3e]; nop ; pop {r0, r1, r2, r3, r4, r5, r7, pc}
> 0x0001287b : ldr.w fp, [lr, fp, lsl #1]; pop {r4, r5, pc}
> 0x00016a15 : ldrh r6, [r1, #0x36]; movs r2, r0; pop {r0, r2, r4, r5, r6, pc}
> 0x0000d101 : ldr r3, [r2, #0x10]; blx r3
> 0x0000d51a : ldr r0, [r3, #8]; blx ip
> 0x0003a83a : ldr r3, [r5, #0x10]; blx r3
> 0x00012a53 : ldr r1, [r6, #0x40]; blx r5
> 0x00016a21 : ldrh r2, [r7, #0x34]; movs r2, r0; pop {r0, r5, r6, pc}
> 0x000169a1 : ldrh r6, [r7, #0x36]; movs r2, r0; pop {r0, r1, r2, r3, r6, r7, pc}
> 0x0002c161 : ldrh r7, [r3, #0x3a]; movs r0, #0; pop {r3, pc}
> 0x0001eb73 : ldr r2, [r4, #0x38]; str r2, [r4]; pop {r4, pc}
> 0x00028629 : ldr.w ip, [r1, r3, lsl #2]; add r1, ip; bx r1
> 0x0001dbf5 : ldr r0, [r5, #0x1c]; mov r2, r6; blx r3
> 0x0000f103 : ldr r1, [r2, #0x10]; str r1, [r0, #0x1c]; pop {r4, pc}
> 0x00021f99 : ldrh r3, [r4, #2]; add.w r0, r3, r0, lsl #16; pop {r4, pc}
> 0x0000e256 : ldreq r2, [r3]; orreq r2, r2, #1; streq r2, [r3]; bx lr
> 0x0002bf3f : ldrh.w r2, [r8, #0x316]; str r3, [r0]; mov.w r0, #-1; pop {r3, pc}
> 0x0000d516 : ldr ip, [r3, #4]; ldr r0, [r3, #8]; blx ip
> 0x0001dd61 : ldr r6, [r4, #0x20]; ldr r0, [r4, #0x1c]; blx r6
> 0x00027b4d : ldr r4, [pc, #0x10]; add r4, pc; str r4, [r5, #0x28]; pop {r3, r4, r5, r6, r7, pc}
> 0x00016fd6 : ldr r7, [pc, #0x10]; svc #0; pop {r4, r7}; movs r0, r0; bxpl lr
> 0x0001cb2b : ldr r1, [r0]; cmp r1, #4; ite eq; ldreq r0, [sp]; movne.w r0, #-1; pop {r1, r2, r3, pc}
> 0x0002bf51 : ldr r3, [r0]; orr r1, r3, #1; str r1, [r0]; movs r0, #0; pop {r3, pc}
> 0x000297e1 : ldr r1, [pc, #8]; add ip, pc; str.w r1, [ip]; add sp, #0x80; pop {r4, pc}
> 0x0000d2a2 : ldr r2, [r1, #0x10]; ldr r0, [r1, #0xc]; str r2, [r3]; bx lr
> 0x0001699d : ldrh r2, [r6, #0x36]; movs r2, r0; ldrh r6, [r7, #0x36]; movs r2, r0; pop {r0, r1, r2, r3, r6, r7, pc}
> 0x0001aa63 : ldr r2, [pc, #0x5c]; movs r4, #1; add r2, pc; str r4, [r2]; blx r3
> 0x000127cf : ldr.w ip, [pc, #0x20]; add ip, pc; str.w r5, [ip, #0xc]; movs r0, #1; pop {r3, r4, r5, pc}
> 0x0001ab01 : ldr r3, [pc, #0x10]; add r3, pc; ldr r3, [r3]; str r0, [r3]; movs r0, #0; pop {r4, pc}
> 0x0001d467 : ldrh r1, [r4, #0xc]; orr r0, r1, #0x40; strh r0, [r4, #0xc]; mov.w r0, #-1; pop {r4, r5, r6, pc}
> 0x00012b27 : ldr r0, [r7, #0x18]; str r1, [sp, #0xc]; ldr r1, [r7, #0x40]; blx r6