@grishka can't use the protocol/API if it's authenticated and only returning information with the right token. The alternative is web scraping. But that's likely to fail even with UI changes.
@nubesik then you decompile the app to extract the token, or use a mitm proxy if they didn't do certificate pinning. There's always a way.
Gregory's Server
@nubesik then you decompile the app to extract the token, or use a mitm proxy if they didn't do certificate pinning. There's always a way.