ROPSHELL 
ropshell> use caaf1d03a067c40c069c6b3b5f6aa406 (download)
name         : ntdll.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 6238

ropshell> suggest "stack pivoting"
> 0x18003f411 : xchg eax, esp; ret
> 0x180022eed : mov rsp, r11; pop r14; ret
> 0x180022eee : mov esp, ebx; pop r14; ret
> 0x180113b02 : lea rsp, [rbp + 0x10]; pop rbp; ret
> 0x1800de97d : xchg esp, ebx; lahf ; xor eax, eax; ret
> 0x1800d07dc : lea esp, [rdi - 0x72b742e4]; add eax, 0x9a459; ret
> 0x180113b03 : lea esp, [rbp + 0x10]; pop rbp; ret
> 0x18000fe7f : xchg esp, edx; add [rax], al; add al, ch; ret
> 0x1801143ad : xchg ebx, esp; add [rax], al; add [rbp - 0x75], al; ret
> 0x18000b1a0 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact