Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Reverse Engineering APIs
Search
mikz
May 30, 2014
Technology
1
580
Reverse Engineering APIs
Hacking Sonos and Bicing APIs with APItools.
ApiDays
mikz
May 30, 2014
Tweet
Share
Other Decks in Technology
See All in Technology
本が全く読めなかった過去の自分へ
genshun9
0
270
Agentic Workflowという選択肢を考える
tkikuchi1002
1
500
PHPでWebブラウザのレンダリングエンジンを実装する
dip_tech
PRO
0
200
Uniadex__公開版_20250617-AIxIoTビジネス共創ラボ_ツナガルチカラ_.pdf
iotcomjpadmin
0
160
生成AI活用の組織格差を解消する 〜ビジネス職のCursor導入が開発効率に与えた好循環〜 / Closing the Organizational Gap in AI Adoption
upamune
2
1k
【TiDB GAME DAY 2025】Shadowverse: Worlds Beyond にみる TiDB 活用術
cygames
0
1.1k
Javaで作る RAGを活用した Q&Aアプリケーション
recruitengineers
PRO
1
110
より良いプロダクトの開発を目指して - 情報を中心としたプロダクト開発 #phpcon #phpcon2025
bengo4com
1
3.1k
Liquid Glass革新とSwiftUI/UIKit進化
fumiyasac0921
0
210
AIのAIによるAIのための出力評価と改善
chocoyama
2
550
あなたの声を届けよう! 女性エンジニア登壇の意義とアウトプット実践ガイド #wttjp / Call for Your Voice
kondoyuko
4
440
生成AI時代の開発組織・技術・プロセス 〜 ログラスの挑戦と考察 〜
itohiro73
0
140
Featured
See All Featured
Intergalactic Javascript Robots from Outer Space
tanoku
271
27k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
357
30k
Stop Working from a Prison Cell
hatefulcrawdad
270
20k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
7
700
Facilitating Awesome Meetings
lara
54
6.4k
[RailsConf 2023] Rails as a piece of cake
palkan
55
5.6k
GitHub's CSS Performance
jonrohan
1031
460k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.7k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
48
5.4k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
107
19k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
8
790
Fireside Chat
paigeccino
37
3.5k
Transcript
Reverse Engineering APIs Raimon Grau & Michal Cichra 3scale
Inspecting APIs github.com/kidd & github.com/mikz 3scale
Debugging APIs
[email protected]
&
[email protected]
3scale
APIs Everywhere
Get in touch!
[email protected]
Cases of study • ‘Hidden’ API:
Sonos • Combining APIs: Bicing on steroids
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Demotime!
Yay! :) or nay :(
Get in touch!
[email protected]
What else you could do? •
Transfer song from Spotify to the Sonos • Backup playlists • Stream the music to remote locations • Vote the songs added to the queue
Get in touch!
[email protected]
Case 2: Api aggregation Bicing +
Google Maps Source: Carlos Mejía Greene https://www.flickr.com/photos/carlitos/3101121106/ CC BY-NC-SA 2.0
Get in touch!
[email protected]
Improvements • Reduce transfer size •
Reduce roundtrips • Improve accuracy by getting info from multiple sources • Improve API interface
Get in touch!
[email protected]
Api Aggregation Mobile app Middleware Web
APIs requests responses
Get in touch!
[email protected]
Api Aggregation Mobile app Middleware Web
APIs requests responses http://techblog.netflix.com/2013/01/optimizing-netflix-api.html
Demotime!
Get in touch!
[email protected]
How we improved? Size Savings Response
time Original XML 131k ~0.7s JSON 80k 39% ~0.7s JSON with distances 91k 30% ~0.7s nearest 10 5k 96% ~0.8s
Get in touch!
[email protected]
What APIs to combine? Hue +
Google Calendar Google Maps + Foursquare Sonos + Last.fm Dropbox + Github Almost any, actually
Get in touch!
[email protected]
What do we get from it?
• As hackers we like to know what’s under the hood • Cross API • We can ‘discover’ hidden APIs. :) • It’s fun! • We can improve performance by aggregating multiple calls.
Get in touch!
[email protected]
Special Treat Primavera Sound Festival 2014
fake apps on Google Play Store real iOS app with a twist
Thank You and Happy Hacking! www.apitools.com @apitools -
[email protected]
[email protected]
/
[email protected]
genshun9
tkikuchi1002
dip_tech
iotcomjpadmin
upamune
cygames
recruitengineers
bengo4com
fumiyasac0921
chocoyama
kondoyuko
itohiro73
tanoku
bermonpainter
hatefulcrawdad
addyosmani
lara
palkan
jonrohan
danielanewman
reverentgeek
panda_program
irinanazarova
paigeccino
![Debugging APIs [email protected] & [email protected] 3scale](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_2.jpg){kind=link}
![Get in touch! [email protected] Cases of study • ‘Hidden’ API:](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_4.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_5.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_6.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_7.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_8.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_9.jpg){kind=link}
![Get in touch! [email protected] What else you could do? •](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_12.jpg){kind=link}
![Get in touch! [email protected] Case 2: Api aggregation Bicing +](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_13.jpg){kind=link}
![Get in touch! [email protected] Improvements • Reduce transfer size •](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_14.jpg){kind=link}
![Get in touch! [email protected] Api Aggregation Mobile app Middleware Web](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_15.jpg){kind=link}
![Get in touch! [email protected] Api Aggregation Mobile app Middleware Web](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_16.jpg){kind=link}
![Get in touch! [email protected] How we improved? Size Savings Response](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_18.jpg){kind=link}
![Get in touch! [email protected] What APIs to combine? Hue +](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_19.jpg){kind=link}
![Get in touch! [email protected] What do we get from it?](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_20.jpg){kind=link}
![Get in touch! [email protected] Special Treat Primavera Sound Festival 2014](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_21.jpg){kind=link}
![Thank You and Happy Hacking! www.apitools.com @apitools - [email protected] [email protected]](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_22.jpg){kind=link}