Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Reverse Engineering APIs
Search
mikz
May 30, 2014
Technology
1
570
Reverse Engineering APIs
Hacking Sonos and Bicing APIs with APItools.
ApiDays
mikz
May 30, 2014
Tweet
Share
Other Decks in Technology
See All in Technology
Winning at PHP in Production in 2025
beberlei
1
270
Part1 GitHubってなんだろう?その2
tomokusaba
0
200
OPENLOGI Company Profile
hr01
0
63k
Part1 GitHubってなんだろう?その1
tomokusaba
1
220
コードや知識を組み込む / Incorporating Codes and Knowledge
ks91
PRO
0
160
品質文化を支える小さいクロスファンクショナルなチーム / Cross-functional teams fostering quality culture
toma_sm
0
180
ペアーズにおける評価ドリブンな AI Agent 開発のご紹介
fukubaka0825
8
2.1k
AIにおけるソフトウェアテスト_ver1.00
fumisuke
1
340
Running JavaScript within Ruby
hmsk
4
440
AIと共に乗り越える、 入社後2ヶ月の苦労と学習の軌跡
sai_kaneko
0
190
2025年8月から始まるAWS Lambda INITフェーズ課金/AWS Lambda INIT phase billing changes
quiver
0
250
社会人力と研究力ー博士号をキャリアの武器にするー
kentaro
2
100
Featured
See All Featured
Being A Developer After 40
akosma
91
590k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
331
21k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
5
590
The Cult of Friendly URLs
andyhume
78
6.3k
Product Roadmaps are Hard
iamctodd
PRO
53
11k
How to train your dragon (web standard)
notwaldorf
91
6k
A Tale of Four Properties
chriscoyier
159
23k
Fashionably flexible responsive web design (full day workshop)
malarkey
407
66k
Facilitating Awesome Meetings
lara
54
6.3k
[RailsConf 2023] Rails as a piece of cake
palkan
54
5.5k
Building a Scalable Design System with Sketch
lauravandoore
462
33k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
233
17k
Transcript
Reverse Engineering APIs Raimon Grau & Michal Cichra 3scale
Inspecting APIs github.com/kidd & github.com/mikz 3scale
Debugging APIs raimon@3scale.net & michal@3scale.net 3scale
APIs Everywhere
Get in touch! hello@apitools.com Cases of study • ‘Hidden’ API:
Sonos • Combining APIs: Bicing on steroids
Get in touch! hello@apitools.com Sonos
Get in touch! hello@apitools.com Sonos
Get in touch! hello@apitools.com Sonos
Get in touch! hello@apitools.com Sonos
Get in touch! hello@apitools.com Sonos
Demotime!
Yay! :) or nay :(
Get in touch! hello@apitools.com What else you could do? •
Transfer song from Spotify to the Sonos • Backup playlists • Stream the music to remote locations • Vote the songs added to the queue
Get in touch! hello@apitools.com Case 2: Api aggregation Bicing +
Google Maps Source: Carlos Mejía Greene https://www.flickr.com/photos/carlitos/3101121106/ CC BY-NC-SA 2.0
Get in touch! hello@apitools.com Improvements • Reduce transfer size •
Reduce roundtrips • Improve accuracy by getting info from multiple sources • Improve API interface
Get in touch! hello@apitools.com Api Aggregation Mobile app Middleware Web
APIs requests responses
Get in touch! hello@apitools.com Api Aggregation Mobile app Middleware Web
APIs requests responses http://techblog.netflix.com/2013/01/optimizing-netflix-api.html
Demotime!
Get in touch! hello@apitools.com How we improved? Size Savings Response
time Original XML 131k ~0.7s JSON 80k 39% ~0.7s JSON with distances 91k 30% ~0.7s nearest 10 5k 96% ~0.8s
Get in touch! hello@apitools.com What APIs to combine? Hue +
Google Calendar Google Maps + Foursquare Sonos + Last.fm Dropbox + Github Almost any, actually
Get in touch! hello@apitools.com What do we get from it?
• As hackers we like to know what’s under the hood • Cross API • We can ‘discover’ hidden APIs. :) • It’s fun! • We can improve performance by aggregating multiple calls.
Get in touch! hello@apitools.com Special Treat Primavera Sound Festival 2014
fake apps on Google Play Store real iOS app with a twist
Thank You and Happy Hacking! www.apitools.com @apitools - hello@apitools.com raimon@3scale.net
/ michal@3scale.net