ROPSHELL 
ropshell> use df83f173a181070e1d900f2587bb5283 (download)
name         : vcat4 (x86_64/RAW)
base address : 0x0
total gadgets: 139

ropshell> suggest
call
    > 0x00001019 : call rax
    > 0x000031ff : call rcx
    > 0x000020cd : call rdx
    > 0x00002022 : call [rax + 0x51]
    > 0x00010030 : call [rdx]
jmp
    > 0x00011977 : jmp rsi
    > 0x0000f494 : jmp [rcx]
load reg
    > 0x0000101e : pop rbx; ret
    > 0x00002138 : pop rdx; ret
    > 0x000024c3 : pop rbp; ret
    > 0x000024c2 : pop rdi; pop rbp; ret
    > 0x000024c1 : pop rsi; pop rdi; pop rbp; ret
pop pop ret
    > 0x000024c3 : pop rbp; ret
    > 0x000024c2 : pop rdi; pop rbp; ret
    > 0x000024c1 : pop rsi; pop rdi; pop rbp; ret
    > 0x000024c0 : pop rbx; pop rsi; pop rdi; pop rbp; ret
stack pivoting
    > 0x00002462 : lea esp, [rcx - 4]; ret
    > 0x0000245c : lea esp, [rbp - 8]; pop rcx; pop rbx; pop rbp; lea esp, [rcx - 4]; ret
    > 0x00002085 : leave ; ret
write mem
    > 0x0000fa60 : add [rsi + 0x5000059], ebx; ret
    > 0x00010013 : add [rax + 0x5000050], edx; mov bl, 1; ret

© 2014 - 2019 - Powered by ROPEME | Contact