ROPSHELL 
ropshell> use 0d2e302910fccc2094dcab8e24739dc8 (download)
name         : TEFW.exe (i386/PE)
base address : 0x401000
total gadgets: 19404

ropshell> suggest "stack pivoting"
> 0x00404681 : xchg eax, esp; ret
> 0x00406d95 : mov esp, ebp; pop ebp; ret
> 0x00464b5f : mov esp, ecx; pop ecx; call eax; ret
> 0x0043f7cc : push ecx; pop esp; pop edi; pop esi; ret 0x18
> 0x004613a0 : push eax; pop esp; mov eax, edi; pop edi; pop esi; ret
> 0x0043fda9 : push ebx; pop esp; pop edi; pop esi; pop ebx; pop ebp; ret 0x1c
> 0x00458c4d : push edx; pop esp; mov eax, edi; pop edi; pop esi; ret 4
> 0x0042675b : mov esp, esi; add eax, [eax]; add esp, 0x4fc; ret 4
> 0x0041d14a : lea esp, [eax + eax + 0x50510000]; call edi
> 0x00439923 : xchg esp, edi; dec [ebx + 0x60428b16]; add esp, 4; mov ecx, esi; call eax
> 0x0043ae5f : leave ; ret

© 2014 - 2019 - Powered by ROPEME | Contact