Does this work with React Native apps?

Yes, it specifically handles React Native applications, including those using Hermes bytecode, to extract API calls from the JavaScript layer.

How do I run the extraction command?

Simply use the /extract-api command followed by the path to your APK file within the Claude Code environment.

Can it detect specific networking libraries?

Yes, it is designed to automatically identify and parse patterns from common frameworks like Retrofit, Volley, OkHttp, and Ktor.

Do I need to install external dependencies?

The skill includes built-in scripts to check for and install required dependencies like jadx and hermes-dec automatically.

Which Android file formats are supported?

The skill supports standard APK files as well as split-APK bundles like APKM and XAPK.

Android APK to OpenAPI Extractor

Name: Android APK to OpenAPI Extractor
Author: bryanmig

bybryanmig

0•

Mobile Development

Extracts validated OpenAPI 3.1.0 specifications from Android APK, APKM, and XAPK files by decompiling application code and mapping REST API endpoints.

This powerful skill enables developers and security researchers to automatically reverse-engineer the network layer of any Android application. By decompiling APKs—including complex bundles like APKM and XAPK—it identifies HTTP endpoints across both native Java/Kotlin frameworks (Retrofit, Volley, OkHttp, Ktor) and React Native apps using Hermes bytecode. The skill automates the extraction of base URLs, authentication patterns, and data models to produce a fully validated OpenAPI 3.1.0 specification, making it invaluable for API documentation, security auditing, and cross-platform integration efforts.

주요 기능

01Generates fully validated OpenAPI 3.1.0 documentation

02Identifies authentication patterns and GraphQL schema usage

030 GitHub stars

04Automatically detects Retrofit, Volley, OkHttp, and Ktor implementations

05Decompiles native Java/Kotlin code and React Native Hermes bytecode

06Supports APK, APKM, and XAPK bundle formats

사용 사례

01Reverse-engineering third-party mobile apps to understand integration patterns

02Generating API documentation for legacy Android apps without original source code

03Conducting security audits and penetration testing on mobile application backends

주요 기능

01Generates fully validated OpenAPI 3.1.0 documentation

02Identifies authentication patterns and GraphQL schema usage

030 GitHub stars

04Automatically detects Retrofit, Volley, OkHttp, and Ktor implementations

05Decompiles native Java/Kotlin code and React Native Hermes bytecode

06Supports APK, APKM, and XAPK bundle formats

사용 사례

01Reverse-engineering third-party mobile apps to understand integration patterns

02Generating API documentation for legacy Android apps without original source code

03Conducting security audits and penetration testing on mobile application backends