You installed v16.3.3 but you pushed frida 16.3.1
[Attachment 80212 - Click to enlarge]
uninstall that and run pip install frida~=16.3.3
For keydive, foxrefire has a an easy to follow tutorial https://github.com/FoxRefire/wvg/wiki/How-to-dump-CDM-key-pair-from-AVD
Create an avd. Do not select google play or aosp. Only Google api
Download frida latest. Rename the extracted file to just "frida-server"
Download keydive. Extract it.
Install requirements if nor already installed. Run pip
Code:pip install frida~=16.3.3 pip install pathlib~=1.0.1 pip install coloredlogs~=15.0.1 pip install pycryptodomex~=3.20.0 pip install xmltodict~=0.13.0 pip install PyYAML~=6.0.1 pip install Flask~=3.0.3 pip install pywidevine~=1.8.0
Run your new avd
Put frida server in the same folder as keydive. Launch a new terminal from within that folder and run these commands:
Code:adb root adb push frida-server /data/local/tmp adb shell "chmod +x /data/local/tmp/frida-server" adb shell "/data/local/tmp/frida-server -D &" python keydive.py -aw
Your avd should automatically fire a drm demo site within it while the code is running.
Once the extraction is complete, in that same folder where you opened the terminal to run the commands, there would be a folder created - "device". Inside you will find three files:
private_key.pem
client_id.bin
google_xxxx_xxxxx_xx_xxxx_l3.wvd
Rename these to
device_private_key
device_client_id_blob
device.wvd
Try StreamFab Downloader and download from Netflix, Amazon, Youtube! Or Try DVDFab and copy Blu-rays!
+ Reply to Thread
Results 661 to 690 of 736
Thread
-
Last edited by Karn; 26th Jun 2024 at 08:54.
-
Thanks for the Explanation with the keydive but currently i am trying to work with the as described in the guide ...
I corrected the Frida Version 16.3.3 and then ran the virtual android ... all work good but when i open a drm site given to test in explanation ... the dumper dosent work the same way the issue remains the same ! lemme show u...
[Attachment 80215 - Click to enlarge]
[Attachment 80216 - Click to enlarge]
[Attachment 80217 - Click to enlarge]
Niether can i find a private_key folder in Dumper...
[Attachment 80219 - Click to enlarge]
Any one with fixes on waht the issue is and how to make it to the other side ??Last edited by Shadee; 26th Jun 2024 at 10:50.
-
i have this error.
[Attachment 80220 - Click to enlarge] -
same error .
[Attachment 80232 - Click to enlarge] -
same error .
[Attachment 80232 - Click to enlarge] -
-
Anyone with some help ... on what's wrong here on using frida ?? OR i have to use keydive only ?? please if anyone can help
Also, as stated before, make sure to triple check that you are using the correct version, use KeyDive for the dumping process with -aw switch, that way the bitmovin page will open by itself and you will end up with WVD file that you can use later. -
-
So i should create a new Virtual Android ?? maybe Pixel 6 the rooted one !! right ??
ya i am using the current version its just that i am not using keydive ... wanna make sure the tutorial thing works fine first then i can try other things
Thanks for the Reply
Just follow the sticky thread post #1 and follow the same steps in those screenshots, same version everything, check if you have correct API and so on.
I recommend using KeyDive, so definitely use that one.
So either use the tutorial in this post #1 or as already stated above use FoxRefire's guide.Last edited by Blacksiren; 27th Jun 2024 at 03:39.
-
It worked how dumb can i be to not give chrome permissions and then cry about it not working !! LOl
Thanks for the help to everyone that replied ...
[Attachment 80235 - Click to enlarge]
Trying with keydive next Its fun learning here -
It worked how dumb can i be to not give chrome permissions and then cry about it not working !! LOl
Thanks for the help to everyone that replied ... -
i already run it in root, but i have this error
[Attachment 80241 - Click to enlarge] -
-
Thanks for the Tutorial ... passed it in the first go !!!!
[Attachment 80304 - Click to enlarge] -
Last edited by Karn; 30th Jun 2024 at 08:40. Reason: .
-
with keydive we get a .wvd file extra which we dont get using frida ... or do we get it there too .. if not then how can we retrieve the same with frida ??
Also now as i have my own CDM can i proceed to the Decryption section of the Decryption and the Temple of doom thread by angela or is there anything left for me to do ??
I totally don't need to use magisk and work with it on virtual studio right as it is to root physical devices or do i need to ??
I mean just want to know the next steps ... i followed the angelas thread and landed here as it said have your own cdm first if u wanna continue
Would be very helpful if u or anyone else can guide me here !!! for the next steps thanks -
with keydive we get a .wvd file extra which we dont get using frida ... or do we get it there too .. if not then how can we retrieve the same with frida ??
You need other data to go alongwith that to get the keys. Temple of Doom details that information. ToD also details how to dump cdm from an actual physical device which is needed when certain platforms identify and reject your sdk cdm. This is where magisk comes into the picture during the dumping process.
The xxxxx.wvd is a decryption module. You can keep it or only use the blob and key files. -
ooh thanks for these additional information ... So for now the Sdk CDM works until u encounter a case where its rejected by certain platforms ... thats the case then where i need to put in a physical device ... root process GOT IT !!
And ya i have the xxxx.wvd ... i will try to work with it but my question is it isn't generated when we try the frida method using Dumping ur L3 CDM process explained right ?? also angela described how to use the .wvd file to decrypt ... u said u can use the other 2 key files to do the same can u throw some light as to how to ... use the other 2 files to do the same ??
If my doubts are a bit annoying i am sorry for that .... any additional information would help me anyways thanks for the reply as always -
Is it possible nowadays to dump L1 keys from maybe Nvidia Shield with publicly available exploits? Or they need private TEE exploits which aren't available?
-
I sure if you could we would there is no publicly available exploit for it been looking into it for ages with keydive you could possibly get an L2 from an android tv type device.
To answer another question if you go to the avd you created click the three dots and wipe data you do not need to create another device each time you want to create another wvd. -
hello
I'm trying to use keydive but when downloading and extracting, I don't find any keydive.py in in the KeyDive-main folder, there is just a keydive.js in the KeyDive-main/keydive folder. So how is it possible to call to use it?
thank you for answer, I'm not use to work with these type of script -
create a venv python -m venv env
activate it
C:\Scripts\key\Scripts\activate or whever you have it
Then pip install keydive installs the latest version
pip install keydive --upgrade will update it when you want
When your in the environment (key) PS C:\Scripts\key\KeyDive-main>
you just type keydive -a -w
When you have frida-server loaded -a is auto so it launches bitmovin and -w creates the .wvd as well as the other 2 files
client_id.bin
private_key.pem
samsung_sm-g398fn_16.0.0_ac95c382_22589_l3.wvd
The last was from a real device but yours will be the same layout
[Attachment 80904 - Click to enlarge]
Then reset the device and you can do it all again
https://files.videohelp.com/u/33133/4464.zip there's the file it creates for you wvd etc -
thank you so much for your quick and detailled answer, I really appreciate!
did some tries tonight and here is the return I have when I type the "keydive -a -w" command:
[Attachment 80909 - Click to enlarge]
have really no idea on how solve this issue with libwvaidl.so
thanks for your help! -
-
I'm trying to hook the version 14 of android, "UpsideDownCake"
I was not able to access to the site I want to catch the videos with the "Pie" 9.0 version
and now I'm not able to boot any knew device I create with android studio, the message "starting up" is displayed indefinitely.... -
thank you for your help! I was able to generate the files with an android 9.0 AVD
unfortunately the videos on the site I try to reach seem not to be displayable with this type of device (this is why I tried on a android 14 for which it works). The site is https://eurovisionsport.com
thank you -
Getting the cdm from Android 14+ requires an additional step. The ELF Binary needs to be imported from avd and functions.xml needs to be created from it using Ghidra. The process is detailed on Keydive page.
-
thanks you for answer. After some troubles I was able to install ghidra, but there are plenty of library on the device, so do you have an idea on which are related to Widevine CDM. I didn't find the libwvaidl.so which was mentioned on the capture I posted a few days ago, but I don't know if I should try to found it, or other, or how many are necessary to complete the process.
thanks for help
Edit: I found those, should I import all of it?
[Attachment 80980 - Click to enlarge]
thanks!Last edited by colebri; 26th Jul 2024 at 02:14.
-
Similar Threads
-
Dumping L3 from Android 10, 11 and 12
By Diazole in forum Video Streaming DownloadingReplies: 45Last Post: 9th Jan 2023, 07:13 -
Can you set up a working CDM from an Android device running a custom ROM?
By scryclwn in forum Video Streaming DownloadingReplies: 2Last Post: 27th Nov 2022, 12:46 -
Error getting the keys with dumper, cdm L3 android 9
By Brift_Bv in forum Video Streaming DownloadingReplies: 15Last Post: 23rd Sep 2022, 02:33 -
How To Dump L3 CDM From Android Device's (ONLY Talk About Dumping L3 CDMS)
By Dannyboi in forum Video Streaming DownloadingReplies: 226Last Post: 1st Mar 2022, 03:34 -
How To Dump L1 CDM From Android Device's (ONLY Talk About Dumping L1 CDMS)
By mintolik in forum Video Streaming DownloadingReplies: 13Last Post: 20th Feb 2022, 14:33