VideoHelp Forum



Support our site by donate $5 directly to us Thanks!!!

Try StreamFab Downloader and download streaming video from Netflix, Amazon!



+ Reply to Thread
Results 1 to 5 of 5
  1. 17th Jul 2023 00:42 #1
    anymeofyou
    anymeofyou is offline
    Member
    Join Date
    Jul 2023
    Location
    India
    Search Comp PM
    I am trying to decrypt video from a Android App.

    MPD
    Code:
    https://drvideo-ak.akamaized.net/video-sg1/ed8a7273-37a0-44bb-874b-df7ca4e8692a/14436.ism/manifest(format=mpd-time-csf)
    PSSH (From mpd file )
    Code:
    AAAAMnBzc2gAAAAA7e+LqXnWSs6jyCfc1R0h7QAAABISEPKdzoPLw0ApqDECYlsgMRY=
    License URL (From mpd file)
    Code:
    https://drvideo.keydelivery.mediaservices.windows.net/Widevine/?kid=f29dce83-cbc3-4029-a831-02625b203116
    I am assuming its using Azure Media services and Widewine DRM

    whenever i make request to license server it shows error that AccessToken is missing i.e Authorization Bearer ey***** something i read from this forum

    Problem arises as I cant see Any such header while intercepting network from android ( I am using Rooted Android phone with HTTP Toolkit )

    Also I dont see app making network request to license server for key ( which is weird because app is playing video and i cross check from mpd the video is indeed encrypted and needs to be decrypted )
    Quote Quote  
  2. 17th Jul 2023 03:09 #2
    A_n_g_e_l_a
    A_n_g_e_l_a is offline
    Member
    Join Date
    Feb 2022
    Location
    Search the forum first!
    Search PM
    I have no knowledge of tis particular site, however any token will likely be in the header passed as part of the http communication. Intercept the traffic with httptoolkit or some such. To do that the android device needs to be rooted so that an httptoolkit certificate can be installed. It is worthwhile looking for any json being passed as the bearer token may be there also.

    Many apps now use 'certificate pinning' which makes it difficult to access even with httptoolkit.
    Quote Quote  
  3. 17th Jul 2023 21:51 #3
    anymeofyou
    anymeofyou is offline
    Member
    Join Date
    Jul 2023
    Location
    India
    Search Comp PM
    Originally Posted by A_n_g_e_l_a View Post
    I have no knowledge of tis particular site, however any token will likely be in the header passed as part of the http communication. Intercept the traffic with httptoolkit or some such. To do that the android device needs to be rooted so that an httptoolkit certificate can be installed. It is worthwhile looking for any json being passed as the bearer token may be there also.

    Many apps now use 'certificate pinning' which makes it difficult to access even with httptoolkit.
    Yes I am using HttpToolkit and installed system certs as well, I dont think the app uses certificate pinning as I noticed when intercepting if the app uses cert pinning the request wont go through , but in my case video is playing in app which means no pinning. PS: I may be wrong
    Quote Quote  
  4. 18th Jul 2023 02:38 #4
    notaghost
    notaghost is offline
    Member
    Join Date
    Sep 2020
    Location
    Pakistan
    Search Comp PM
    can i try?
    discord=notaghost9997
    Quote Quote  
  5. 18th Jul 2023 13:20 #5
    anymeofyou
    anymeofyou is offline
    Member
    Join Date
    Jul 2023
    Location
    India
    Search Comp PM
    Originally Posted by notaghost View Post
    can i try?
    https://play.google.com/store/apps/details?id=com.marrow
    You can make a Free ID and try on free videos ( It has DRM too )

    Try and let me know about it if you intercept any license url
    Quote Quote  



Similar Threads

« Previous Thread | Next Thread »
Visit our sponsor! Try DVDFab and backup Blu-rays!