https://github.com/vernoxvernax/geizhals-api

WIP Geizhals/Skinflint API Documentation
https://github.com/vernoxvernax/geizhals-api

documentation geizhals openapi redocly

Last synced: 4 months ago
JSON representation

WIP Geizhals/Skinflint API Documentation

• Host: GitHub
• URL: https://github.com/vernoxvernax/geizhals-api
• Owner: Vernoxvernax
• License: mit
• Created: 2024-09-08T17:14:25.000Z (almost 2 years ago)
• Default Branch: main
• Last Pushed: 2025-01-15T13:57:12.000Z (over 1 year ago)
• Last Synced: 2025-02-02T06:24:17.277Z (over 1 year ago)
• Topics: documentation, geizhals, openapi, redocly
• Homepage: https://vernoxvernax.github.io/geizhals-api/
• Size: 325 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# Geizhals/Skinflint - API Documentation

This is a WIP documentation for the API powering the popular price tracker [Geizhals/Skinflint](https://en.wikipedia.org/wiki/Geizhals).

For information on how to create the bearer token, which is required for almost every request, see [bearer_token.md](bearer_token.md)

___

**Feel free to create issues and or pull requests.**

___

### **How:**

Since the web version of geizhals only provides static text, it was necessary to reverse-engineer the smartphone app.

Because of the use of SSL-Pinning, [mitmproxy](https://mitmproxy.org/) alone, isn't enough to monitor the network traffic.

If you want to help me document the rest of the endpoints or potential future changes in the API, I recommend the following tools (android):

* [mitmproxy](https://mitmproxy.org/) to monitor the network requests

* [iBotPeaches/Apktool](https://github.com/iBotPeaches/Apktool) to unpack the apk

* [frida](https://github.com/frida/frida) for ssl-unpinning code-injection

  * [frida-interception-and-unpinning](https://github.com/httptoolkit/frida-interception-and-unpinning). This is one of the very few unpinning scripts that actually worked. [Httptoolkit](https://github.com/httptoolkit/httptoolkit) also works if your phone is rooted and you don't have a problem with light mode GUIs (not-recommended).

#### **Android phones without root**:

+ Follow [this](https://koz.io/using-frida-on-android-without-root/) guide to patch the geizhals apk.

  + Hint: `extractedFolder/smali/at/geizhals/android/MainActivity.smali`

+ I also recommend to skip step 7. and instead use [patrickfav/uber-apk-signer](https://github.com/patrickfav/uber-apk-signer) to sign the apk.

+ Then just follow the instructions for `frida-interception-and-unpinning`.

___

See [**Redocly/openapi-starter**](https://github.com/Redocly/openapi-starter) for more information about redocly.