ROPSHELL 
ropshell> use e7c8fcbd0a3f87fa008b20e8e36534e7 (download)
name         : static (x86_64/ELF)
base address : 0x401100
total gadgets: 6443

ropshell> suggest "load reg"
> 0x0041069c : pop rax; ret
> 0x0040166f : pop rbx; ret
> 0x004062d8 : pop rsi; ret
> 0x00401fe0 : pop rdi; ret
> 0x00401761 : pop rbp; ret
> 0x004023e8 : pop rsp; ret
> 0x004023e7 : pop r12; ret
> 0x00405cc9 : pop r13; ret
> 0x004062d7 : pop r14; ret
> 0x00401fdf : pop r15; ret
> 0x0045e467 : pop rdx; pop rbx; ret
> 0x0046d10c : pop rcx; jmp rcx
> 0x004697c6 : mov rax, [rsp]; add rsp, 0x38; ret
> 0x00432a5a : mov rbx, [rsp]; add rsp, 0x30; ret
> 0x004697c7 : mov eax, [rsp]; add rsp, 0x38; ret
> 0x00432a5b : mov ebx, [rsp]; add rsp, 0x30; ret
> 0x0042766a : mov rsi, [rsp + 0x18]; call rbx
> 0x0045ee55 : mov r9, [rsp + 0x28]; call r15
> 0x0045ee56 : mov ecx, [rsp + 0x28]; call r15
> 0x0042766b : mov esi, [rsp + 0x18]; call rbx
> 0x00401503 : mov rdi, [rsp + 8]; call [rsp]
> 0x00401504 : mov edi, [rsp + 8]; call [rsp]
> 0x0044422a : mov rdx, [rsp]; mov rax, [rsp + 8]; call rax
> 0x0044422b : mov edx, [rsp]; mov rax, [rsp + 8]; call rax
> 0x0044f027 : pop r8; add [rax], al; add [rax], al; movups xmm[rbx + 0x48], xmm0; pop rbx; ret
> 0x00432ad4 : mov rcx, [rsp + 8]; mov rax, [rsp]; mov rsp, rbx; mov rbx, [rsp]; add rsp, 0x18; jmp r11
> 0x0043cac5 : mov r8, [rsp + 0x40]; mov rcx, [rsp + 0x20]; mov rdx, [rsp + 0x38]; mov rsi, [rsp + 0x48]; mov rdi, [rsp + 0x28]; mov rax, [rsp + 0x10]; call rax

© 2014 - 2019 - Powered by ROPEME | Contact