Skip to content

A tool to trace Widevine execution in Android and dump buffers.

License

Notifications You must be signed in to change notification settings

Avalonswanderer/wideXtractor

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

WideXtractor

WideXtractor Android

Dependencies:

  • Python3
  • python3-frida-tools

WideXtractor needs a Frida server to be run on the target device with ptrace capability for media process (i.e, media, root, system).

WideXtractor traces the Media DRM process on Android and hooks the Widevine library in use. _oeccXX (from _oecc01 to _oecc48) functions are then hooked to dump important buffers, return values, and arguments, for inspection. Once WideXtractor attached, using an OTT app such as Netflix will start the usage of the Widevine CDM and log the control flow.

$ ./wideXtractor.py [legacy|new]
legacy -> Android < v7
new    -> v7 and above

Chrome EME Plugin with WideXtractor

The eme_logger_widextractor folder contains a modified version of the EME Logger Chrome plugin. This version incorporates hexdump for License server message exchange and functions info for proprietary Widevine buffer analysis.

About

A tool to trace Widevine execution in Android and dump buffers.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published