ropshell> use fa0fc1ba2672d5b2e9bb0e66d6cdaf9e (download) name : esrv (i386/ELF) base address : 0x8049170 total gadgets: 64
ropshell> suggest call > 0x080491f0 : call eax > 0x0804923d : call edx > 0x08049192 : call [eax + 0x51] > 0x080492c4 : call [ebp - 0x77] jmp > 0x080493be : jmp esp > 0x080491a1 : push esp; mov ebx, [esp]; ret load reg > 0x0804928e : pop ebx; ret > 0x08049293 : pop edx; ret > 0x080496f3 : pop ebp; ret > 0x080496f2 : pop edi; pop ebp; ret > 0x0804969b : popal ; cld ; ret pop pop ret > 0x080496f3 : pop ebp; ret > 0x080496f2 : pop edi; pop ebp; ret > 0x080496f1 : pop esi; pop edi; pop ebp; ret > 0x080496f0 : pop ebx; pop esi; pop edi; pop ebp; ret stack pivoting > 0x0804969a : lea esp, [ecx - 4]; ret > 0x08049694 : lea esp, [ebp - 8]; pop ecx; pop ebx; pop ebp; lea esp, [ecx - 4]; ret > 0x080491f5 : leave ; ret