ROPSHELL 
ropshell> use e5411df154e4129318d2091bb5580a42 (download)
name         : kernel32.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 2707

ropshell> suggest "load reg"
> 0x18000a5c2 : pop rax; ret
> 0x180001398 : pop rbx; ret
> 0x180046f13 : pop rcx; ret 3
> 0x180024ea2 : pop rdx; ret
> 0x1800090ed : pop rsi; ret
> 0x1800011a4 : pop rdi; ret
> 0x180002cc3 : pop rbp; ret
> 0x1800123f8 : pop rsp; ret
> 0x1800123f7 : pop r12; ret
> 0x180006e8f : pop r13; ret
> 0x1800090ec : pop r14; ret
> 0x18000f648 : pop r15; ret
> 0x18001ba49 : mov rax, [rsp + 8]; ret
> 0x18000b245 : mov rbx, [rsp + 8]; ret
> 0x180077a28 : mov rdi, [rsp + 0x10]; ret
> 0x18001ba4a : mov eax, [rsp + 8]; ret
> 0x18000b246 : mov ebx, [rsp + 8]; ret
> 0x180077a29 : mov edi, [rsp + 0x10]; ret
> 0x18004f6e8 : mov rsi, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x18004f6e9 : mov esi, [rsp + 0x10]; mov rdi, [rsp + 0x18]; ret
> 0x180009c8d : movzx edx, [rsp + 0x68]; mov [rcx], edx; add rsp, 0x48; ret
> 0x18000903c : movzx ecx, [rsp + 0x60]; mov [rax], ecx; xor eax, eax; add rsp, 0x48; ret
> 0x18005e4e3 : mov rcx, [rsp + 0x30]; call [rip + 0x24289]; nop [rax + rax]; add rsp, 0x28; ret
> 0x180073d64 : mov rbp, [rsp + 0x10]; mov rsi, [rsp + 0x18]; mov rdi, [rsp + 0x20]; ret
> 0x180073d65 : mov ebp, [rsp + 0x10]; mov rsi, [rsp + 0x18]; mov rdi, [rsp + 0x20]; ret

© 2014 - 2019 - Powered by ROPEME | Contact