Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Reverse Engineering APIs
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
mikz
May 30, 2014
Technology
1
610
Reverse Engineering APIs
Hacking Sonos and Bicing APIs with APItools.
ApiDays
mikz
May 30, 2014
Tweet
Share
Other Decks in Technology
See All in Technology
10Xにおける品質保証活動の全体像と改善 #no_more_wait_for_test
nihonbuson
PRO
2
210
M&A 後の統合をどう進めるか ─ ナレッジワーク × Poetics が実践した組織とシステムの融合
kworkdev
PRO
1
410
ブロックテーマでサイトをリニューアルした話 / 2026-01-31 Kansai WordPress Meetup
torounit
0
450
Data Hubグループ 紹介資料
sansan33
PRO
0
2.7k
AWS Network Firewall Proxyを触ってみた
nagisa53
0
150
Ruby版 JSXのRuxが気になる
sansantech
PRO
0
120
生成AI時代にこそ求められるSRE / SRE for Gen AI era
ymotongpoo
5
2.8k
Amazon S3 Vectorsを使って資格勉強用AIエージェントを構築してみた
usanchuu
3
440
Introduction to Sansan, inc / Sansan Global Development Center, Inc.
sansan33
PRO
0
3k
小さく始めるBCP ― 多プロダクト環境で始める最初の一歩
kekke_n
1
360
データの整合性を保ちたいだけなんだ
shoheimitani
8
3k
SREが向き合う大規模リアーキテクチャ 〜信頼性とアジリティの両立〜
zepprix
0
410
Featured
See All Featured
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
27k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
26
3.3k
Rebuilding a faster, lazier Slack
samanthasiow
85
9.4k
GraphQLの誤解/rethinking-graphql
sonatard
74
11k
Context Engineering - Making Every Token Count
addyosmani
9
650
Documentation Writing (for coders)
carmenintech
77
5.2k
How to Grow Your eCommerce with AI & Automation
katarinadahlin
PRO
0
100
brightonSEO & MeasureFest 2025 - Christian Goodrich - Winning strategies for Black Friday CRO & PPC
cargoodrich
3
97
Building Applications with DynamoDB
mza
96
6.9k
Claude Code どこまでも/ Claude Code Everywhere
nwiizo
61
52k
Deep Space Network (abreviated)
tonyrice
0
47
Lightning talk: Run Django tests with GitHub Actions
sabderemane
0
110
Transcript
Reverse Engineering APIs Raimon Grau & Michal Cichra 3scale
Inspecting APIs github.com/kidd & github.com/mikz 3scale
Debugging APIs
[email protected]
&
[email protected]
3scale
APIs Everywhere
Get in touch!
[email protected]
Cases of study • ‘Hidden’ API:
Sonos • Combining APIs: Bicing on steroids
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Get in touch!
[email protected]
Sonos
Demotime!
Yay! :) or nay :(
Get in touch!
[email protected]
What else you could do? •
Transfer song from Spotify to the Sonos • Backup playlists • Stream the music to remote locations • Vote the songs added to the queue
Get in touch!
[email protected]
Case 2: Api aggregation Bicing +
Google Maps Source: Carlos Mejía Greene https://www.flickr.com/photos/carlitos/3101121106/ CC BY-NC-SA 2.0
Get in touch!
[email protected]
Improvements • Reduce transfer size •
Reduce roundtrips • Improve accuracy by getting info from multiple sources • Improve API interface
Get in touch!
[email protected]
Api Aggregation Mobile app Middleware Web
APIs requests responses
Get in touch!
[email protected]
Api Aggregation Mobile app Middleware Web
APIs requests responses http://techblog.netflix.com/2013/01/optimizing-netflix-api.html
Demotime!
Get in touch!
[email protected]
How we improved? Size Savings Response
time Original XML 131k ~0.7s JSON 80k 39% ~0.7s JSON with distances 91k 30% ~0.7s nearest 10 5k 96% ~0.8s
Get in touch!
[email protected]
What APIs to combine? Hue +
Google Calendar Google Maps + Foursquare Sonos + Last.fm Dropbox + Github Almost any, actually
Get in touch!
[email protected]
What do we get from it?
• As hackers we like to know what’s under the hood • Cross API • We can ‘discover’ hidden APIs. :) • It’s fun! • We can improve performance by aggregating multiple calls.
Get in touch!
[email protected]
Special Treat Primavera Sound Festival 2014
fake apps on Google Play Store real iOS app with a twist
Thank You and Happy Hacking! www.apitools.com @apitools -
[email protected]
[email protected]
/
[email protected]
nihonbuson
kworkdev
torounit
sansan33
nagisa53
sansantech
ymotongpoo
usanchuu
kekke_n
shoheimitani
zepprix
cassininazir
eileencodes
samanthasiow
sonatard
addyosmani
carmenintech
katarinadahlin
cargoodrich
mza
nwiizo
tonyrice
sabderemane
![Debugging APIs [email protected] & [email protected] 3scale](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_2.jpg){kind=link}
![Get in touch! [email protected] Cases of study • ‘Hidden’ API:](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_4.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_5.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_6.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_7.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_8.jpg){kind=link}
![Get in touch! [email protected] Sonos](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_9.jpg){kind=link}
![Get in touch! [email protected] What else you could do? •](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_12.jpg){kind=link}
![Get in touch! [email protected] Case 2: Api aggregation Bicing +](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_13.jpg){kind=link}
![Get in touch! [email protected] Improvements • Reduce transfer size •](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_14.jpg){kind=link}
![Get in touch! [email protected] Api Aggregation Mobile app Middleware Web](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_15.jpg){kind=link}
![Get in touch! [email protected] Api Aggregation Mobile app Middleware Web](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_16.jpg){kind=link}
![Get in touch! [email protected] How we improved? Size Savings Response](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_18.jpg){kind=link}
![Get in touch! [email protected] What APIs to combine? Hue +](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_19.jpg){kind=link}
![Get in touch! [email protected] What do we get from it?](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_20.jpg){kind=link}
![Get in touch! [email protected] Special Treat Primavera Sound Festival 2014](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_21.jpg){kind=link}
![Thank You and Happy Hacking! www.apitools.com @apitools - [email protected] [email protected]](https://files.speakerdeck.com/presentations/b56d08b0ca3d0131569646e151884671/slide_22.jpg){kind=link}