ROPSHELL 
ropshell> use caaf1d03a067c40c069c6b3b5f6aa406 (download)
name         : ntdll.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 6238

ropshell> suggest "load reg"
> 0x180017d0d : pop rax; ret
> 0x1800027c8 : pop rbx; ret
> 0x180091915 : pop rcx; ret
> 0x18001a5b6 : pop rdx; ret
> 0x18000219b : pop rsi; ret
> 0x1800010d8 : pop rdi; ret
> 0x180001740 : pop rbp; ret
> 0x18000bb38 : pop rsp; ret
> 0x18004d913 : pop r8; ret
> 0x18008ee78 : pop r11; ret
> 0x18000bb37 : pop r12; ret
> 0x18000173f : pop r13; ret
> 0x180006099 : pop r14; ret
> 0x18002bf23 : pop r15; ret
> 0x18008ee76 : pop r10; pop r11; ret
> 0x18008ee74 : pop r9; pop r10; pop r11; ret
> 0x1800218ac : mov rbx, [rsp + 0x10]; ret
> 0x180059c47 : mov rsi, [rsp + 0x10]; ret
> 0x1800210c1 : mov rdi, [rsp + 0x10]; ret
> 0x1800218ad : mov ebx, [rsp + 0x10]; ret
> 0x180059c48 : mov esi, [rsp + 0x10]; ret
> 0x1800210c2 : mov edi, [rsp + 0x10]; ret
> 0x1800a5c88 : mov eax, [rsp]; add rsp, 8; ret
> 0x18004667e : mov rax, [rsp + 0x38]; add rsp, 0x28; ret
> 0x1800a4153 : mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x1800d55fe : mov rcx, [rsp + 0xf0]; call rax
> 0x18006bc42 : mov r12, [rsp + 0x38]; pop r15; pop r14; pop r13; ret
> 0x1800d55ff : mov ecx, [rsp + 0xf0]; call rax
> 0x18006bc43 : mov esp, [rsp + 0x38]; pop r15; pop r14; pop r13; ret
> 0x18008767f : mov rbp, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x1800a30a6 : mov r9, [rsp + 0x38]; add rsp, 0x48; jmp rax
> 0x180087680 : mov ebp, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x1800a414f : mov r10, [rsp]; mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x1800a4150 : mov edx, [rsp]; mov r11, [rsp + 8]; add rsp, 0x10; ret
> 0x1800a3348 : mov rdx, [rsp + 0x38]; mov [rsp + 0x48], rdx; add rsp, 0x48; ret
> 0x1800a30a1 : mov r8, [rsp + 0x30]; mov r9, [rsp + 0x38]; add rsp, 0x48; jmp rax

© 2014 - 2019 - Powered by ROPEME | Contact