ropshell> use cfcef452ef69ea2dd73d6f55d7607c2b (download)
name         : libc-2.24.so (x86_64/ELF)
base address : 0x1f9c0
total gadgets: 18580
ropshell> suggest
call
    > 0x000203ef : call rax
    > 0x0002141d : call rbx
    > 0x00021e07 : call rcx
    > 0x0003a2b6 : call rdx
    > 0x0002179a : call rsi
jmp
    > 0x00023614 : push rsp; ret
    > 0x00020751 : jmp rax
    > 0x0010b64d : jmp rbx
    > 0x0004819a : jmp rcx
    > 0x000334ca : jmp rdx
load mem
    > 0x000719fc : mov eax, [rdx]; ret
    > 0x000c8fb0 : mov eax, [rdi]; ret
    > 0x0013ea22 : mov rax, [rdi + 0x18]; ret
    > 0x0013ea23 : mov eax, [rdi + 0x18]; ret
    > 0x0016b663 : movzx ecx, [rsi]; sub eax, ecx; ret
load reg
    > 0x0003aa08 : pop rax; ret
    > 0x00034248 : pop rbx; ret
    > 0x00116c86 : pop rdx; ret
    > 0x0001fcbd : pop rsi; ret
    > 0x0001fd7a : pop rdi; ret
pop pop ret
    > 0x00116c85 : pop r10; ret
    > 0x0001fb98 : pop r12; pop r13; ret
    > 0x0001fcb8 : pop r12; pop r13; pop r14; ret
    > 0x0001fd73 : pop r12; pop r13; pop r14; pop r15; ret
    > 0x00020a1f : pop r12; pop r13; pop r14; pop r15; pop rbp; ret
sp lifting
    > 0x00090a4e : add rsp, 0x100; ret
    > 0x00090a4e : add rsp, 0x100; ret
    > 0x00034e96 : add rsp, 0x28; ret
    > 0x00079905 : add rsp, 0x38; ret
    > 0x00106577 : add rsp, 0x408; ret
stack pivoting
    > 0x00027550 : xchg eax, esp; ret
    > 0x00103c54 : mov esp, edx; call rbp
    > 0x00039bb1 : lea rsp, [rbp - 0x10]; pop rbx; pop r12; pop rbp; ret
    > 0x00039bb2 : lea esp, [rbp - 0x10]; pop rbx; pop r12; pop rbp; ret
    > 0x00035659 : mov rsp, r8; mov rbp, r9; nop ; jmp rdx
syscall
    > 0x000bc795 : syscall ; ret
    > 0x00078df7 : int 0x80; cmp esi, 2; cmove edx, ecx; mov [rdi], edx; rep ; ret
write mem
    > 0x000916d8 : adc [rbx], eax; ret
    > 0x000e959a : add [rcx], edi; ret
    > 0x00034c44 : adc [rdi], ecx; ret
    > 0x0012658f : add [rdx], eax; pop rbx; ret
    > 0x001681f1 : add [rax + 0x28d4802], ecx; ret