Chrome DevTools Protocol · macOS

Reverse-engineer any website's API

Reverse Computer is a desktop browser that captures a site's traffic over the DevTools Protocol, reconstructs its hidden API into clean endpoints, and generates working clients you can run.

Apple Silicon (arm64) · unsigned build — right-click → Open on first launch
app.example.com/dashboard
▚ target site rendering in an embedded Chromium view…
MethodStPath
GET200/api/v1/users/{id}
GET200/api/v1/users/{id}/orders?limit=20
POST201/api/v1/orders
GET200/api/v1/search?q=shoes
PUT204/api/v1/cart/{id}
API Map
users
GET/users/{id}
GET/users/{id}/orders
orders
POST/orders
search
GET/search
cart
PUT/cart/{id}
How it works

See every request. Understand the whole API.

Browse the target site normally — logged in, clicking around. Reverse Computer watches the wire and turns raw traffic into a structured, callable API.

Full-fidelity capture

Every request and response with complete bodies, headers, and the exact JS call stack that fired it — captured over the Chrome DevTools Protocol, the same channel DevTools uses.

Live API reconstruction

Requests are clustered into endpoints in real time. URLs are templated — /users/123 + /users/456 become /users/{id} — with inferred params, JSON schemas, and detected auth.

Generate working clients

Turn any endpoint into runnable cURL, TypeScript, or Python — built from a real captured sample so it works the first time.

Replay with real auth

Re-fire any reconstructed call with the captured credentials to prove it works — and ask an AI, with the full session as evidence, how any part of the site behaves.

Generate

From captured traffic to a client you can run.

Pick an endpoint. Reverse Computer writes the client from the real request — headers, auth, and body included.

cURL TypeScript Python
// GET /api/v1/users/{id}/orders — reconstructed from 2 samples
export async function getUserOrders(): Promise<unknown> {
  const res = await fetch("https://app.example.com/api/v1/users/123/orders?limit=20", {
    method: "GET",
    headers: {
      "Authorization": "Bearer eyJhbGci…",
      "Accept": "application/json"
    }
  });
  if (!res.ok) throw new Error(`GET failed: ${res.status}`);
  return res.json();
}
Download

Point it at a site. Watch the API assemble.

reverse-computer-arm64.dmg · 92 MB · Apple Silicon