ROPSHELL 
ropshell> use cf1adbff678e90a5a70ce0ef5800f208 (download)
name         : RCalc (x86_64/ELF)
base address : 0x400910
total gadgets: 105

ropshell> suggest
call
    > 0x004009fe : call rax
    > 0x00400a05 : call [rbp + 0x48]
    > 0x00401109 : call [r12 + rbx*8]
jmp
    > 0x00400965 : jmp rax
load mem
    > 0x00400bc4 : mov rdx, [rax]; sub rdx, 1; mov [rax], rdx; mov rax, [rbp - 8]; pop rbp; ret
    > 0x00400bc5 : mov edx, [rax]; sub rdx, 1; mov [rax], rdx; mov rax, [rbp - 8]; pop rbp; ret
load reg
    > 0x00401123 : pop rdi; ret
    > 0x00400970 : pop rbp; ret
    > 0x00401122 : pop r15; ret
    > 0x00400aa8 : pop rbx; pop rbp; ret
    > 0x00401121 : pop rsi; pop r15; ret
pop pop ret
    > 0x00401122 : pop r15; ret
    > 0x00401120 : pop r14; pop r15; ret
    > 0x0040111e : pop r13; pop r14; pop r15; ret
    > 0x0040111c : pop r12; pop r13; pop r14; pop r15; ret
    > 0x0040111b : pop rbp; pop r12; pop r13; pop r14; pop r15; ret
stack pivoting
    > 0x00400cbd : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact