Reverse Engineering Protobuf Definitions from Compiled Binaries

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  • grpc-go

    The Go language implementation of gRPC. HTTP/2 based RPC

    The reflection service is open-sourced (at least for some sdks):

    * https://github.com/grpc/grpc-go/blob/master/Documentation/se...

    * https://chromium.googlesource.com/external/github.com/grpc/g...

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • Protobuf

    Protocol Buffers - Google's data interchange format

    For at least 4 years protobuf has had decent support for self-describing messages (very similar to avro) as well as reflection

    https://github.com/protocolbuffers/protobuf/blob/main/src/go...

    Xgooglers trying to make do on the cheap will just create a Union of all their messages and include the message def in a self-describing message pattern. Super-sensitive network I/O can elide the message def (empty buffer) and any for RecordIO clone well file compression takes care of the definition.

    Definitely useful to be able to dig out old defs but protobuf maintainers have surprisingly added useful features so you don’t have to.

    Bonus points tho for extracting the protobuf defs that e.g. Apple bakes into their binaries.

  • ProtobufDecoder

    A Google Protocol Buffers (Protobuf) payload decoder/analyzer

    Decoding protobuf (and message formats in general) can be such a pain and fun at the same time.

    I’ve written ProtobufDecoder which takes a different approach: analyze the structure of the actual messages to help you figure out the protobuf structure of a message.

    https://github.com/sandermvanvliet/ProtobufDecoder

  • protobuf-inspector

    🕵️ Tool to reverse-engineer Protocol Buffers with unknown definition

    I have used this other tool to good effect to reverse engineer a file format based on Protobuf: https://github.com/mildsunrise/protobuf-inspector

  • gRPC

    The C based gRPC (C++, Python, Ruby, Objective-C, PHP, C#)

    Yes, grpc_cli tool uses essentially the same mechanism except implemented as a grpc service rather than as a stubby service. The basic principle of both is implementing the C++ proto library's DescriptorDatabase interface with cached recursive queries of (usually) the server's compiled in FileDescriptorProtos.

    See also https://github.com/grpc/grpc/blob/master/doc/server-reflecti...

    The primary difference between what grpc does and what stubby does is that grpc uses a stream to ensure that the reflection requests all go to the same server to avoid incompatible version skew and duplicate proto transmissions. With that said, in practice version skew is rarely a problem for grpc_cli style "issue a single RPC" usecases: even if requests do go to two or more different versions of a binary that might have incompatible proto graphs, it is very common for the request and response and RPC to all be in the same proto file so you only need to make one RPC in the first place unless you're using an extension mechanism like proto2 extensions or google.protobuf.Any.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Consistent Hashing: An Overview and Implementation in Golang

    3 projects | dev.to | 7 May 2024
  • [Beginner] How can I uninstall and properly install gRPC for Golang?

    2 projects | /r/grpc | 12 Feb 2021
  • Μpb: Small, Fast C Protobufs

    1 project | news.ycombinator.com | 6 Jan 2025
  • Go Protobuf: The New Opaque API

    11 projects | news.ycombinator.com | 16 Dec 2024
  • Understanding Protocol Buffers: A Fast Alternative to JSON

    1 project | dev.to | 15 Dec 2024