How are you going to respond to widevine l3 decryptor's death at May 31st?

[abhiramskrishna]

please read the end note

yeah,
but for me Authorisation and x-access-token was same after refreshing page.

yeh its same only but header h1 and sdrm token expires in 30 sec after generates from curl u have to be fast to get keys

Code:

import requests
import re

url = input("url : ")
payload = {"x-access-token":"XXXXXXXX","Authorization":"XXXXXXX"}

r = requests.post(url, json=payload)
value = r.json()

print(value)

i use this code to get header values

if u know python make a custom script to get headers from this values so that u can make it faster with in 30 sec before token expire

my n1 values changes,
but sdrm value also same for me

will try oncemore.

[demon]

Code:

print(widevine_license.content)

add this line in l3.py

hope it shows error just try

[k2000]

More info please

I would like to understand this method get the keys on the site which has JSON,Token

sorry i donno more about json

Your method spoke to you with Token of 30 seconds and Json.
I would like to understand please these your lines that I do not understand.

Can you have more details?

[demon]

request URL generates a header to get the keys from server. so i am requsting json data from request url with the help of athuthendication and x-token payload values from secure url. after request i get n1 and custom data values from request url i use this as header to get keys. json generated token expires in 30 secs so with header.py values have to get keys before 30 seconds else server will reject ur request.

NOTE: i am talking about zee5

[abhiramskrishna]

request URL generates a header to get the keys from server. so i am requsting json data from request url with the help of athuthendication and x-token payload values from secure url. after request i get n1 and custom data values from request url i use this as header to get keys. json generated token expires in 30 secs so with header.py values have to get keys before 30 seconds else server will reject ur request.

NOTE: i am talking about zee5

Tried as u said.
Seems like my cdm issue

"unable to parse license - check protobufs"

[demon]

check with some other sites and confirm with ur cdm ifits working r not

[abhiramskrishna]

check with some other sites and confirm with ur cdm ifits working r not

it's working fine with other sites.
If your cdm is public one, can u share it?

[demon]

i am getting the same error if the request made after 30 sec

make it faster get help with expert to get custom script

[abhiramskrishna]

i am getting the same error if the request made after 30 sec

make it faster get help with expert to get custom script

I tried before 30sec and same error
Can you make a video or something?

[k2000]

Yes a video would be nice to understand your method.

[demon]

Yes a video would be nice to understand your method.

https://vimeo.com/676738192

have a look and the time before 30 sec s u will get key after 30 u wont

try faster

[k2000]

Yes a video would be nice to understand your method.

https://vimeo.com/676738192

have a look and the time before 30 sec s u will get key after 30 u wont

try faster

the info you paste you take them where?

[ell0]

.............................

[demon]

i have zero knowledge about channel 4

[ell0]

..................................

[sika]

Please provide an example of the channel4 header and the script you are using, I want to get the keys of three contents.

what is the content give me the links

[ell0]

............................

[jonny999]

Hello,
does anyone have experience with rakuten.tv or google play? If so, please write via PM.

[ell0]

.............................

[demon]

zee5 download with WKS
(custum works only for zee5. i am newbie in python any upgrade help will be appreciated)

l3.py code
ENTER Default KID example : 4cd2e2f0-c0dd-4b08-9f9e-9f96631c4555

Code:

# -*- coding: utf-8 -*-
# Module: KEYS-L3
# Created on: 11-10-2021
# Authors: -∞WKS∞-
# Version: 1.1.0

import base64, requests, sys, xmltodict
import headers
from pywidevine.L3.cdm import cdm, deviceconfig
from base64 import b64encode
from pywidevine.L3.getPSSH import get_pssh
from pywidevine.L3.decrypt.wvdecryptcustom import WvDecrypt

def get_pssh(keyId):
    array_of_bytes = bytearray( b'\x00\x00\x002pssh\x00\x00\x00\x00')
    array_of_bytes.extend(bytes.fromhex("edef8ba979d64acea3c827dcd51d21ed"))
    array_of_bytes.extend(b'\x00\x00\x00\x12\x12\x10')
    array_of_bytes.extend(bytes.fromhex( keyId.replace("-", "")))
    return base64.b64encode(bytes.fromhex(array_of_bytes.hex()))

kid = input("Please input KID in hex string: ")
kid = kid.replace('-', '')
assert len(kid) == 32 and not isinstance(kid, bytes), "wrong KID length"
pssh = "{}".format(get_pssh(kid).decode('utf-8'))
lic_url = 'https://spapi.zee5.com/widevine/getLicense'


def WV_Function(pssh, lic_url, cert_b64=None):
    wvdecrypt = WvDecrypt(init_data_b64=pssh, cert_data_b64=cert_b64, device=deviceconfig.device_android_generic)                   
    widevine_license = requests.post(url=lic_url, data=wvdecrypt.get_challenge(), headers=headers.headers)
    license_b64 = b64encode(widevine_license.content)
    wvdecrypt.update_license(license_b64)
    Correct, keyswvdecrypt = wvdecrypt.start_process()
    if Correct:
        return Correct, keyswvdecrypt   
correct, keys = WV_Function(pssh, lic_url)

print()
for key in keys:
    wv = key.split(":")
    print('WidevineDecryptor: Found key: {1} (KID={0})'.format(wv[0],wv[1]))

input url is request url
example :

Code:

https://spapi.zee5.com/singlePlayback/getDetails/secure?content_id=..........

double click copy all the results and paste here with new file name generateheaders.py
replace x-access-token and Authorization value from request url Payload

Code:

import requests
import re
import json

url = input("url : ")
payload ={"x-access-token":"rvGZ68.....Q","Authorization":"bearer vEKe7B....."}

r = requests.post(url, json=payload)
value = r.json()


result = json.dumps(value)
print(result)

wv = result.split('"')
n1=(len(wv)-22)
sdrm=(len(wv)-26)
print('headers = {{ "nl": "{0}", "customdata": "{1}" }}'.format(wv[(n1)],wv[(sdrm)]))

copy the results to headers.py and save it

CHECK HEADER it looks like

Code:

headers = { "nl": "XXXXXXXXXXX", "customdata": "XXXXXXXXXXXX" }

now run l3.py and enter only KID
hope u get the keys

goodluck

i donno any info about json headers. i know only for zee5

NOTE: please some one help me with the upgraded script to make it more easier Thanks in advance

[jack_666]

@ell0 wrote

And I say, wouldn't it be better if you told us how so that we don't have to bother people every time they want to get the keys to some content of channel4

This made me laugh. I can say with absolute certainty that if someone told you right now how to get this working, tomorrow some budding genius will ask the same question.

[ell0]

.....................

[VanZan]

I used wvdump on a Nexus 7 tablet running Android 10 (LOS). I got two folders: key_boxes and private_keys. The first folder contains 4445.bin and 4445.json and the other folder has client_id.bin and private_key.pem.

I went to https://github.com/medvm/, downloaded the python scrupt, renamed client_id.bin to device_client_id_blob and renamed private_key.pem to device_private_key and placed them in the devices/android_generic folder.

I went on RTE Player and got the mpd and license url and entered them into the medvm script. The thing is I get the same five keys everytime no matter what programme I try.

Could someone tell me what step I did wrong? Not sure if the Nexus 7 tablet is the problem since it had Android 10. Or whether I need the files from key_boxes....

[Sorenb]

make sure you get the releaseid and enter it correctly with your headers.
For RTE releaseid is the key
Good luck

[ElCap]

More info please

I would like to understand this method get the keys on the site which has JSON,Token

Its all about replicating what the browser does.
https://imgur.com/yD8xmG7
the broswer sends a POST request to "https://spapi.zee5.com/singlePlayback/getDetails/secure?......." with 2 parameters in json format
{"x-access-token":"eyJ0eXAiOiJqd3QiLCJhbGciOiJIUzI1NiJ9.eyJw. .....","X-Z5-Guest-Token":"309Kc9nb14.........."}
(the fields are slightly different for a paid subscription compared to free)

https://imgur.com/BxWn9dS
the server responds with a lot of information, but the most important ones are nl and sdrm.
nl and sdrm are used as headers in the request to the license server with the license challenge from wks as the payload.

As demon mentioned, the nl and sdrm tokens are only valid for less than 30seconds, so you need to capture the response from the 1st request to the "getDetails/secure" url, parse it, and copy it to the headers.py file before sending the normal wks license request.

[abhiramskrishna]

More info please

I would like to understand this method get the keys on the site which has JSON,Token

Its all about replicating what the browser does.
https://imgur.com/yD8xmG7
the broswer sends a POST request to "https://spapi.zee5.com/singlePlayback/getDetails/secure?......." with 2 parameters in json format
{"x-access-token":"eyJ0eXAiOiJqd3QiLCJhbGciOiJIUzI1NiJ9.eyJw. .....","X-Z5-Guest-Token":"309Kc9nb14.........."}
(the fields are slightly different for a paid subscription compared to free)

https://imgur.com/BxWn9dS
the server responds with a lot of information, but the most important ones are nl and sdrm.
nl and sdrm are used as headers in the request to the license server with the license challenge from wks as the payload.

As demon mentioned, the nl and sdrm tokens are only valid for less than 30seconds, so you need to capture the response from the 1st request to the "getDetails/secure" url, parse it, and copy it to the headers.py file before sending the normal wks license request.

No other alternative method?

[ElCap]

No other alternative method?

you could try sending an email to zee5 support asking them for all the keys....

[abhiramskrishna]

No other alternative method?

you could try sending an email to zee5 support asking them for all the keys....

haha bro
This method never worked for me

[ElCap]

you have to send each email within 30 seconds of the last

[[ss]vegeta]

you have to send each email within 30 seconds of the last

Confirmed, working.
I asked this a couple of months ago and they sent me all the keys in a text document.

[Attachment 63371 - Click to enlarge]