ROPSHELL 
ropshell> use f503e4ae1d2faf5a499a8119610ab505 (download)
name         : BNUpdate.exe (i386/PE)
base address : 0x401000
total gadgets: 4767

ropshell> suggest "load reg"
> 0x004031ff : pop eax; ret
> 0x00401b7b : pop ebx; ret
> 0x00401a6a : pop ecx; ret
> 0x0040111b : pop esi; ret
> 0x00404450 : pop edi; ret
> 0x00404224 : pop ebp; ret
> 0x00412a04 : pop esp; ret
> 0x00410b83 : pop edx; add al, 0x5b; ret 0xc
> 0x00408800 : mov eax, [esp + 4]; mul ecx; ret 0x10
> 0x0040a274 : popal ; inc edx; add [ebx + 0x5e5f0cc4], al; ret 0xc
> 0x0040993c : mov ecx, [esp + 4]; mov [ecx], eax; ret 8
> 0x00414211 : mov edx, [esp + 4]; mov [edx], 7; ret 4
> 0x00408669 : mov edi, [esp + 0x10]; push 1; push 0; push 0; push edi; call ebx
> 0x0041e9fa : mov ebp, [esp + 0x14]; push ebp; mov edx, 1; call [edi + 0x20]
> 0x0041eda2 : mov esi, [esp + 0x20]; lea edx, [eax + ecx + 0x102]; mov ecx, [esi + 0x28]; push 4; call [esi + 0x20]

© 2014 - 2019 - Powered by ROPEME | Contact