Welcome to Our Community

Hello and welcome to UDevStudio.com your #1 source for developer tools and gaming assets. Please take the opportunity to read the Rules and FAQ forum to learn more about this site.

Welcome to Udevstudio 2.2!

  • The board is Currently OPEN for free registration.

Widevine L3 Decryptor

Pr0fesseur

Community Founder
Staff member
Administrator
Apprentice
Registered
LV
6
 
Joined
Nov 26, 2019
Messages
1,270
Points
913
Awards
6
Age
121
Website
Udevstudio.com
Scrip
10,051
Shards
473
Gemstone
51

A Chrome Extension That Demonstrates Bypassing Widevine L3 DRM

-Extension-That-Demonstrates-Bypassing-Widevine-L3.jpg

Please, Log in or Register to view URLs content!
is a Google-owned DRM system that’s in use by many popular streaming services (Netflix, Spotify, etc.) to prevent media content from being downloaded.

But Widevine’s least secure security level, L3, as used in most browsers and PCs, is implemented 100% in software (i.e no hardware TEEs), thereby making it reversible and bypassable.

This Chrome extension demonstrates how it’s possible to bypass Widevine DRM by
Please, Log in or Register to view URLs content!
calls to the browser’s
Please, Log in or Register to view URLs content!
and decrypting all Widevine content keys transferred – effectively turning it into a clearkey DRM.


Usage

To see this concept in action, just load the extension in Developer Mode and browse to any website that plays Widevine-protected content, such as
Please, Log in or Register to view URLs content!
[Update: link got broken?].

Keys will be logged in plaintext to the javascript console.

e.g:

WidevineDecryptor: Found key: 100b6c20940f779a4589152b57d2dacb (KID=eb676abbcb345e96bbcf616630f1a3da)

Decrypting the media itself is then just a matter of using a tool that can decrypt MPEG-CENC streams, like ffmpeg.

e.g:

ffmpeg -decryption_key 100b6c20940f779a4589152b57d2dacb -i encrypted_media.mp4 -codec copy decrypted_media.mp4

NOTE: The extension currently supports the Windows platform only.

How

In the context of browsers the actual decryption of the media is usually done inside a proprietary binary (widevinecdm.dll, known as the Content
Please, Log in or Register to view URLs content!
Module or CDM) only after receiving the license from a license server with an encrypted key in it.

This binary is usually heavily obfuscated and makes use of third-party solutions that claim to offer software “protection” such as
Please, Log in or Register to view URLs content!
or
Please, Log in or Register to view URLs content!
.

Some reversing job on that binary can then be done to extract the secret keys and mimic the key decryption algorithm from the license response.

Why

This PoC was done to further show that code obfuscation,
Please, Log in or Register to view URLs content!
tricks, whitebox
Please, Log in or Register to view URLs content!
algorithms and other methods of security-by-obscurity will eventually by defeated anyway, and are, in a way, pointless.

Legal Disclaimer

This is for educational purposes only. Downloading copyrighted materials from streaming services may violate their Terms of Service. Use at your own risk.
 

Attachments

  • widevine-l3-decryptor-main.zip
    2 MB · Views: 682

About Us

UDevStudio started as a simple response to all the other sites not caring about their community. We endeavor to build a prosperous forum for all to enjoy. We welcome all suggestions and forums to meet your needs.

Our Mission

UDevStudio dedicates itself to providing you the best resources for your development projects. We strive to offer you the tools and space to speak your mind and discuss topics with your peers that will help you succeed in your endeavors.
Top
AdBlock Detected

We get it, advertisements are annoying!

Sure, ad-blocking software does a great job at blocking ads, but it also blocks useful features of our website. For the best site experience please disable your AdBlocker.

I've Disabled AdBlock    No Thanks