ROPSHELL 
ropshell> use e5411df154e4129318d2091bb5580a42 (download)
name         : kernel32.dll (x86_64/PE)
base address : 0x180001000
total gadgets: 2707

ropshell> suggest "write mem"
> 0x18006a3bc : add [rax + 0xf], ecx; ret
> 0x18007b8c6 : add [rax + 1], edi; ret
> 0x1800075e8 : adc [rcx + 0x20], eax; ret
> 0x18006a3bb : add [r8 + 0xf], ecx; ret
> 0x180067791 : add [rdi], ecx; xchg eax, ebp; ret
> 0x180021426 : add [rdx + 0x24], eax; xor eax, eax; ret
> 0x18001fd88 : add [rax], r8; mov eax, 1; add rsp, 0x38; ret
> 0x18001fd87 : adc [rsi + 1], ecx; add [rax + 1], bh; add rsp, 0x38; ret
> 0x1800225f3 : add [rsi], eax; or [rax], eax; xor eax, eax; cmp [rcx + 0x808], al; setne al; ret
> 0x18005e0b0 : add [rdi], rdx; lea r11, [rsp + 0x60]; mov rbx, [r11 + 0x10]; mov rsi, [r11 + 0x28]; mov rsp, r11; pop rdi; ret
> 0x18005e0b1 : add [rdi], edx; lea r11, [rsp + 0x60]; mov rbx, [r11 + 0x10]; mov rsi, [r11 + 0x28]; mov rsp, r11; pop rdi; ret
> 0x180067032 : add [rbp + 0xd], esi; mov rcx, [r9 + 8]; mov rax, [r9]; call [rip + 0x1c1d6]; xor eax, eax; add rsp, 0x28; ret
> 0x1800075d7 : adc [rcx], eax; movups xmm1, xmm[rdx + 0x10]; movups xmm[rcx + 0x10], xmm1; movsd xmm0, [rdx + 0x20]; movsd [rcx + 0x20], xmm0; ret

© 2014 - 2019 - Powered by ROPEME | Contact