ropshell> use e52799a03a83265e0a3953777a824f58 (download) name : m2.exe (i386/PE) base address : 0x401000 total gadgets: 312
ropshell> suggest call > 0x00401024 : call eax > 0x004060bc : call ecx jmp > 0x004012c5 : jmp eax > 0x00403dbc : jmp [eax] > 0x0040258a : jmp [ecx] > 0x004057b3 : jmp [esi - 0x39] > 0x004017e0 : push esp; mov ebp, [esp + 0x58]; add esp, 0x5c; ret load mem > 0x00401b4c : mov eax, [ebx + 4]; mov [esp], esi; call eax load reg > 0x00401ad1 : pop ebx; ret > 0x00406ba8 : pop ecx; ret > 0x00401b6e : pop esi; ret > 0x0040206b : pop edi; ret > 0x0040132f : pop ebp; ret pop pop ret > 0x0040132f : pop ebp; ret > 0x00406ba7 : pop eax; pop ecx; ret > 0x00402069 : pop ebx; pop esi; pop edi; ret > 0x0040153b : pop ebx; pop esi; pop edi; pop ebp; ret > 0x00405b75 : pop esp; pop ebx; pop esi; pop edi; pop ebp; ret sp lifting > 0x00401b90 : add esp, 0x1c; ret > 0x00401b90 : add esp, 0x1c; ret > 0x0040650d : add esp, 0x24; ret > 0x00405694 : add esp, 0x3c; ret > 0x00405215 : add esp, 0x4c; ret stack pivoting > 0x00405d73 : xchg eax, esp; lea eax, [0]; ret > 0x00401538 : lea esp, [ebp - 0xc]; pop ebx; pop esi; pop edi; pop ebp; ret > 0x00401321 : leave ; ret