ROPSHELL 
ropshell> use 1fab4c106642a4dfe4b8a489cc2b3334 (download)
name         : ncat.exe (i386/PE)
base address : 0x401000
total gadgets: 22194

ropshell> suggest "write mem"
> 0x0043406c : add [ebx], ecx; ret
> 0x004ceae8 : add [ebx], edi; ret
> 0x004ba63e : add [ebx], ebp; ret
> 0x00444442 : adc [ebp], edx; ret
> 0x00424ce3 : add [edx], eax; pop ebx; ret
> 0x0042df18 : adc [eax + 1], edi; ret
> 0x004258d9 : adc [ebx + 0x3b0c2444], ecx; ret
> 0x0045fad9 : adc [esi + 0x5f], ebx; ret
> 0x00495043 : add [edi + 0x5d], ebx; ret
> 0x004377e9 : add [ebp + 0x59], ebx; ret
> 0x0046ec5f : add [ebp + 0x5e5b0143], ecx; ret
> 0x00429d1b : add [edx], ebp; call eax
> 0x004ac872 : add [eax + 0x5dc68b11], ecx; pop esi; pop ecx; ret
> 0x0040daef : adc [ebx + 0x67403e8], eax; mov eax, 0x53a344; ret
> 0x004e5155 : add [esi + 0x10], eax; pop edi; pop esi; ret
> 0x00429869 : add [esi + 0x24], ecx; pop esi; pop ebx; ret
> 0x004ac0d0 : add [ebx], eax; add [eax], al; pop esi; ret
> 0x004c3b7d : adc [ecx], eax; add [ecx + 0x5d], bl; ret
> 0x00499bab : add [edi], ebx; pop esi; pop edi; pop ebx; pop ecx; ret
> 0x00421180 : add [ebp], ebx; pop edi; mov eax, 1; pop ebp; ret
> 0x004bd0d5 : add [esi + 0x28], edi; pop ebp; pop edi; pop esi; ret
> 0x0042ca5f : adc [ebp + 4], esi; xor eax, eax; pop esi; ret
> 0x00493773 : add [ebp + 7], edi; mov eax, 1; pop edi; ret
> 0x0043b05b : add [ebx], esi; sar [ecx], 1; pop esi; setne al; ret
> 0x004a9d19 : add [esi], ebx; pop ebp; xor eax, eax; pop ebx; pop ecx; ret
> 0x0043d0d2 : add [edi], eax; mov eax, [esi]; pop esi; pop edi; ret
> 0x004649ad : add [edi], edx; mov eax, [esi]; pop edi; pop esi; ret
> 0x004a87ff : adc [edx + 1], ebp; push edi; call edx
> 0x0049cffd : add [edi + 4], esi; mov eax, [ecx + 0x10]; ret
> 0x0047be9b : add [ecx], esi; std ; call [esi - 0x18]
> 0x004d6a9c : add [ecx + 0x38], eax; adc [ebp - 0x13], esi; pop esi; pop ebx; ret
> 0x00429cd1 : add [esi + 0x57], edx; push ebx; push ebp; call eax
> 0x0048b0dc : adc [edi + 0x53], edx; push ebx; push esi; call eax
> 0x00497c3b : add [eax], edi; stc ; inc [ebx + 0x5e5f2cc4]; mov eax, ebx; pop ebx; ret
> 0x00429ef1 : add [ebx + 0x55], edx; push edx; push esi; push edi; call eax
> 0x0042e4b0 : add [ebp + 0x50], edx; push ebx; push 6; push esi; call edi
> 0x004d7a09 : add [eax], edx; add [eax], al; push eax; push edi; call ebx
> 0x004ad19a : add [eax], esi; add [eax], al; xor eax, eax; pop ebx; add esp, 0xc; ret
> 0x004ad55a : add [esi], ebp; add [eax], al; xor eax, eax; pop ebx; add esp, 0xc; ret
> 0x0042545b : adc [edx], ecx; add [eax], al; mov eax, [esi + 0x14]; add esp, 4; pop esi; ret
> 0x004599ff : add [edi], ecx; test [ecx - 0x75000000], ebx; fcomp [esi + 0x5d]; pop edi; mov eax, ebx; pop ebx; ret
> 0x0040331c : add [ebp + 0x5ff775c0], eax; mov [ecx], esi; mov eax, [ebp + 8]; pop esi; pop ebx; pop ebp; ret
> 0x00412575 : add [esi], edi; mov eax, [esi]; mov [eax + ecx], 0; xor eax, eax; mov esp, ebp; pop ebp; ret
> 0x0043b32f : add [esi], eax; add eax, [eax]; add [ebp + 0x3a], dh; mov eax, [ecx + 0x10]; call eax

© 2014 - 2019 - Powered by ROPEME | Contact