i have found a surprisingly large amount of success in uploading an .apk to Claude and asking it to extract all HTTP endpoint used and to display them as a Swagger document. most apps use HTTP(S) to communicate with their APIs, so reverse engineering is relatively trivial