ROPSHELL 
ropshell> use c49c040723b9f513c1c297b852bbb3c1 (download)
name         : ROPnCall (x86_64/ELF)
base address : 0x4010d0
total gadgets: 47

ropshell> suggest
call
    > 0x0040133a : call [rdi + rbx*8]
    > 0x00401339 : call [r15 + rbx*8]
jmp
    > 0x0040112c : jmp rax
load reg
    > 0x0040126f : pop rax; ret
    > 0x00401272 : pop rcx; ret
    > 0x0040126c : pop rdx; ret
    > 0x00401353 : pop rdi; ret
    > 0x0040119d : pop rbp; ret
pop pop ret
    > 0x00401352 : pop r15; ret
    > 0x00401350 : pop r14; pop r15; ret
    > 0x0040134e : pop r13; pop r14; pop r15; ret
    > 0x0040134c : pop r12; pop r13; pop r14; pop r15; ret
    > 0x0040134b : pop rbp; pop r12; pop r13; pop r14; pop r15; ret
stack pivoting
    > 0x00401262 : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact