47

Does anyone have any links for reverse engineering Spotify DRM? I didn't necessarily need it for myself, have plenty of music, and it would be a pretty inefficient means of piracy vs. BitTorrent or like yt-dlp, but I'm curious how it works.

It always seems to me like the analog gap is particularly gaping with audio, and I wonder how far down to the metal it's protected.

@piracy

top 17 comments
sorted by: hot top controversial new old
[-] stabbedbybrick@lemmy.dbzer0.com 20 points 1 year ago* (last edited 1 year ago)

Spotify, like most legit streaming services, use Google Widevine DRM, and you don't reverse engineer it. At least not for the level that is required for this kind of content (L3). When you stream something in browser or device, the decryption module of that device is "talking" to the license server. If the identification goes through, the decryption keys are sent and the media gets played. So what you do is you extract that decryption module from a device, and then use scripts to send requests acting as that device, tricking the license server into sending you the decryption keys.

Once set up, and with the proper script, it can actually be even more efficient than other forms of piracy.

[-] BitterSweet@discuss.tchncs.de 4 points 1 year ago* (last edited 1 year ago)

Buy a cheap Xiaomi phone for like 50 bucks from your local semi-sketch phone repair shop and use this: dumper. I had an Android I bought to try modding it and then I found Dumper and it worked well.

Fyi, there’s many scripts out there to make WEB-DLs from many streaming sources, I don’t recall the self-host git site though, perhaps a kind fellow will link it.

[-] sneezycat@sopuli.xyz 14 points 1 year ago* (last edited 1 year ago)

I have no clue how to defeat the DRM/rip the songs. But you can just route the audio to a recording program and record it live.

Not ideal but it's a workaround if you really need to download something off of Spoti.

[-] InAmberClad@lemmy.nz 13 points 1 year ago* (last edited 1 year ago)

Zotify can download music directly from Spotify. You can bulk download or search individual songs, playlists, artists etc to download.

You need to have an account and a having premium allows you to get full quality downloads.

[-] zxo@sopuli.xyz 9 points 1 year ago

It seems apps like SpotiFlyer and Spotube both use the Spotify discovery API but actually get the music from YT Music (which is already easy to download using yt-dlp, NewPipe, or another app of your choice). Kinda sad that I can't find a way to pirate music off of Spotify yet, but YT Music is pretty good for my purposes.

[-] edsu@social.coop 8 points 1 year ago
[-] jonny@social.coop 8 points 1 year ago

@edsu
it seems like it just uses the API???? idk readme says they have moved on to another project that I can't find the sources for, the gitlab just has the APKs. but if it's just as simple as using the API I would be freaking stunned there wasn't more widespread abuse of it.
@piracy

[-] CommunityLinkFixer@lemmings.world 10 points 1 year ago

Hi there! The links in your response are not clickable for Lemmy users, here are the clickable versions: !piracy@lemmy.dbzer0.com

Hi there! The links in your response are not clickable for Lemmy users, here are the clickable versions: !piracy@lemmy.dbzer0.com

[-] marcus@lemmy.world 6 points 1 year ago* (last edited 1 year ago)

There was actually a project on github that claimed to allow downloading of Spotify straight from the source with drm bypassing called XSpotify but it was taken down by spotify before i got to try it: https://github.com/meik97/XSpotify

However it was archived on the wayback machine: https://web.archive.org/web/20200303145624/https://github.com/meik97/XSpotify

Obviously take this with a grain of salt, you should probably read the source code before attempting to run it

[-] Dragon_dick_99@lemmy.world 5 points 1 year ago

Check these tools out. I'm pretty sure I did this yesterday.

https://fmhy.pages.dev/storage/#spotify-downloaders

Hi there! The links in your response are not clickable for Lemmy users, here are the clickable versions: !piracy@lemmy.dbzer0.com

[-] uyuu@lemmy.4d2.org 2 points 1 year ago

This is how they did the old one. Its a lot more complicated now, but the basics should be the same.

[-] carson@lemmy.world 2 points 1 year ago

I have found other services like Tidal aren't as advanced with their DRM it seems, I'm able to download using some command line CLI off github full FLACs and everything.

[-] BraBraBra@lemmy.world 1 points 1 year ago

Please dm me how

[-] anothercatgirl@lemmy.blahaj.zone 1 points 1 year ago* (last edited 1 year ago)

What does it mean in terms of ethics when a song is not on Spotify and is not considered a song (is just a generic video) through YouTube Music? It seems to happen a lot to video game OSTs, especially Touhou music.

load more comments
view more: next ›
this post was submitted on 14 Jul 2023
47 points (96.1% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54443 readers
305 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS