How to proxy gRPC calls

Question

I'm trying to analyse what information an app is sending so I setup Charles but to my surprise nothing was logged out.

After decompiling the app I see that it doesn't use simple REST calls but rather a library called gRPC.

Is there a good tool out there that will allow me too see what is send out from the app?

Hi, Looking for same. did you find any solution? – Vibhor Jain Aug 25 '18 at 04:25 — Vibhor Jain, Aug 25 '18 at 04:25
nope :(... still looking .. – Vibhor Jain Oct 11 '18 at 23:48 — Vibhor Jain, Oct 11 '18 at 23:48

HIGAN · Answer 1 · 2022-09-07T06:58:38.893

3

The Mediator is a Cross-platform GUI gRPC debugging proxy like Charles but design for gRPC.

You can dump all gRPC requests without any configuration.

Mediator can render the binary message into a JSON tree, when you have the API schema.

It support decode gRPC/TLS, but you should download and install the Mediator Root Certificate to your device.

edited Sep 07 '22 at 06:58

answered Jul 27 '21 at 08:48

HIGAN

76
3

Hello, butter developer! – Itachi May 20 '22 at 04:30

score 2 · Answer 2 · answered Feb 21 '21 at 02:48

gRPC uses HTTP/2 as a transport protocol. Any proxy which supports HTTP/2 for both the front-end and back-end connections should be able to be used to inspect the packets a gRPC connection. Note, some proxies only support HTTP/2 for the front-end or back-end connections and those are incompatible with gRPC.

Envoy Proxy (https://www.envoyproxy.io/) supports proxying gRPC connections and can be configured to log out request information.

Some other example proxies include:

score -1 · Answer 3 · answered May 05 '20 at 12:00

-1

If you are asking for android there is a app called HttpCanry. It can log request/ respond.

answered May 05 '20 at 12:00

noob

545
6
23

How to proxy gRPC calls

3 Answers3