Free Video Anti Piracy / Download Script [In here]
 

A few things first:
#1 - I'm releasing this script under the MIT License. In a nutshell, you may copy it, change it, modify it, sell it, resell it - do whatever you want with it.

#2 - The code here is proven to work, verified (there's also a demo included).

#3 - I cannot support this code. This is why it is free. If you can work it into your sites, that's fantastic. If you want to work this into your CMS, even better. But please don't email or ICQ me asking how to make it work, can I integrate it, etc etc.

What it does
This script injects encrypted member information into your videos [avi & wmv in this release, but adding new formats is easy enough]. Videos still play as normal, work as normal etc. If they're opened in a hex editor, the information is not visible. You need the key to decrypt it [ie, no privacy problems]

Once in place, you can grab your videos off rapidshare, forums, etc etc, and pinpoint exactly who stole your content (username, time and date, original filename and IP)

What it doesn't do
It doesn't survive re-encoding to a tube [sorry!] - but will survive splitting, and often resizing

How it works
A lot of CMSs / Sites stream out the videos. This script watches while the video streams out, and injects the encoded information into the stream in the right place.

What it needs
PHP4/5

It doesn't take up too much overhead, but then again, it's probably not the most efficent thing ever.

Enough chatter: http://www.ninjito.com/VidProt-Final.zip

Now don't let me hear you complaining about having shit stolen again.

BTW, this was tested and proved to work in sitedepth and CARMA (both with some tweaking). We tracked Raven Riley content for over a year, and with it, killed a lot of stolen accounts, and also worked out who was stealing what.

qx

My I first to say THANK YOU!!!!

Will check it out.

No problems.
I might hit up John / Omar today (and anyone else w/ a CMS product) to draw their attention to it.

ATM there's no automated decrypted, but I found while testing it wasn't so necessary - you only had to check one or two to work out who stole the batch.

That said, building it isn't that much of a difficult exercise.

This is sad.

Perhaps the most important thread to hit GFY in YEARS and nobody is looking at it.

This is exactly why our industry is doomed.

Hit up Elevated X as well please!!! :thumbsup

Brilliant piece of work. Definitely a good step towards eliminating the bad guys.

Very nice tool, and it's really cool that you're letting others use it for free. I downloaded a copy and I'll look over the code in a Sylar-esque fashion later. :winkwink:

Interested!
Thanks

very nice checking it out now, and if it does what it says, you should be selling it, as we would pay for something like this ;)

Great move. Im really impressed that your giving it away for free. Nice to see some people care more about the future of our industry than short term gain.

This business is all talk. Many people pretending to give a fuck but when it comes to protecting their shit they won't move a finger.

this script sounds a bit like the one we did for software, we didn't record user information in the file, but we did put a certificate to uniquely identify the copyrighted material. When you connect to bit torrent, you only have to download 5% of the file to identify it as being yours. What percentage of the file do you need to download before the identification works.

I'd say the first 1 - 5kb

*Edit: Seems about 900b in for the examples I checked, but it will differ.

Thanks for the nice script

Thank you for the nice script. It's really nice to see somebody trying to do something to help us get rid of theft. Yout totally rock.

Interesting concept, checking out the script now...

Should be careful who this is given out to. Make sure only people with paysites receive this. :2 cents:

And thank you for trying to help make the point that if we don't protect our content then we lose. THAT is the only way to stop tubes, p2p, torrents, etc. :thumbsup

does it embed the IP address of the downloader? without the IP address it won't be much use legally.

You can change the encryption key to something else (anything else, actually) - so if people were making spoofs of member info in your content, you'd be able to tell.

Yes. You can embed any info you want, but in the example above it goes: member's username, timestamp of download, original name, IP address..

That's generally all the info you have on a member, but if you have more, you can put more in.

the IP address the member originally signed up with and the IP address of the downloader?

asking because once caught the member will say somebody else used his user/pass

Nice concept. Thanks, I will test it out.

If you've got it on record, you can embed either, both or neither :)

The information you embed is up to you.

That said, when I was going over statistics, it was fairly obvious what went on.

For accounts that had a spread of IP addresses accessing them, you knew the account was shared, so you'd change the pass and alert the owner.

For accounts where they'd been getting hit by the same IP, you knew it was the owner doing it.

Basic logic can be applied :)

Interesting, will look into it, thanks :thumbsup

Great script, now we'd have to get the word out so everybody start's using it...

A step in the right direction. Cheers man.

It's not going to suit all environments. Using fread/passthru to serve content is wildly inefficient, but it also is used very often. If you're using X-sendfile / lighttpd, obviously it won't work.

That said, it'd probably only be a few hour endeavor to convert this to C, and then you've got an apache / lighttpd module that would do it incredibly efficiently.

this is great, great work

this is very cool.

I noticed everyone bitching about tubes and piracy failed to see this thread ;)

quantum, sticky.. If it doesn't survive reencoding to tubes, how does this affect tubes?

What we use is different, and we don't allow downloads at all. Quantum's way he is using is more for weeding out offenders after the fact. However it would only take a few companies going after the theft on a surfer level to put a good dent it it. If I misspoke Quantum let me know, as that was how I understood your method.

Would have been nice to see someone help you improve this so that it could beat the tube encoding. and still be free.

some ass hat will take it mod it to do that and sell it.

actually supporting companies that support tubes does more to keep tubes going than stolen content. if no one bought ads they wouldn't be around no matter what they had on their site.

You're right Sticky.
I wrote it a while back, when tubes weren't so much the issue - so visibly watermarking makes sense nowadays.

Still, many videos are plundered and put on torrent sites / forums / newsgroups / dump sites - and this is a neat tool to combat that.

time to brand this baby and sell it in a month when everyone is crying again :1orglaugh:1orglaugh

OOooh. GFY's wet dream script.

The only way you can 'beat' tube encoding is to place something visible on the video.
That's either a watermark [ie sticky] - or encoding in invisible watermarks [this solution also exists] - but that doesn't work on the fly (and isn't cheap).

There are definitely limitations to each method. There's no magic bullet here.

Great concept, maybe not a total solution but on it way to solve a bad problem.

It's open source. Take it. Improve it.
Don't wait for permission or someone else to do it for you :)