ROPSHELL 
ropshell> use cdd4395fb735e6c3bdc4d597f54c364f (download)
name         : ret2win (i386/RAW)
base address : 0x0
total gadgets: 41

ropshell> suggest
call
    > 0x00000538 : call eax
    > 0x0000098f : call [eax]
    > 0x00000a33 : call [ecx]
    > 0x000007ca : call [esp + ebx*8]
jmp
    > 0x00000611 : jmp eax
    > 0x00000a93 : jmp [ebp]
load reg
    > 0x000007e3 : pop edi; ret
    > 0x00000618 : pop ebp; ret
    > 0x000007e1 : pop esi; inc ecx; pop edi; ret
    > 0x0000060d : pop eax; adc [eax], ah; jmp eax
pop pop ret
    > 0x00000618 : pop ebp; ret
stack pivoting
    > 0x00000754 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact