ropshell> use ed9b30bb428bf65f987eba1c2faa8ef2 (download) name : a.out (i386/ELF) base address : 0x1090 total gadgets: 49
ropshell> suggest call > 0x000011e2 : call [edx - 0x77]; ret > 0x0000110c : call eax > 0x0000115d : call edx > 0x000010b2 : call [eax + 0x51] jmp > 0x000010c0 : push esp; mov ebx, [esp]; ret load reg > 0x000012bb : pop ebp; ret > 0x000012ba : pop edi; pop ebp; ret > 0x00001253 : popal ; cld ; ret > 0x000012b9 : pop esi; pop edi; pop ebp; ret > 0x00001256 : mov eax, [esp]; ret pop pop ret > 0x000012bb : pop ebp; ret > 0x000012ba : pop edi; pop ebp; ret > 0x000012b9 : pop esi; pop edi; pop ebp; ret > 0x000012b8 : pop ebx; pop esi; pop edi; pop ebp; ret stack pivoting > 0x00001252 : lea esp, [ecx - 4]; ret > 0x0000124c : lea esp, [ebp - 8]; pop ecx; pop ebx; pop ebp; lea esp, [ecx - 4]; ret > 0x00001111 : leave ; ret