>>89966889Mostly, googled a lot.
I set up a debugging proxy (Charles, my friend from the times Facebook games were both cool and hackable), enabled MITM on https, looked at the requests and responses. Googled what I have seen. Found Adobe's documentation on Adobe Access DRM system. Realized that they use ASN1-like encoding for DRM metadata, license requests and responses. Opened them to look at the insides.
And this is where I am now. Looking at the inputs, trying to recreate what the black box of player app does to get the content decryption key.
I decompiled APK of Android app and SWF of web player already, but there is just another black box inside. The decryption is done by binary lib for Android, and Flash Player itself for PCs. And I'm definitely not reverse engineering binaries. If anyone here is competent enough to do that, contact me.
The reason Disney XD app is so leaky: they don't bother with protecting their keys. And that's a right thing to do actually. No matter how hard is your DRM, any "real" releaser will defeat it with a HDMI capture card. And regular pirate will just click "download" on his torrents, not knowing how much effort was wasted on protecting this content.