Skip to content

Instantly share code, notes, and snippets.

@VernHe

VernHe/anisette.py

Forked from JJTech0130/anisette.py
Created August 31, 2025 07:09
Show Gist options
  • Save VernHe/c3c009df3bf9daaa566b55c42e631451 to your computer and use it in GitHub Desktop.
Save VernHe/c3c009df3bf9daaa566b55c42e631451 to your computer and use it in GitHub Desktop.
Download ZIP

Revisions

  1. @JJTech0130 JJTech0130 revised this gist Jan 6, 2025. 1 changed file with 2 additions and 1 deletion.
    3 changes: 2 additions & 1 deletion anisette.py
    View file
    Original file line number Diff line number Diff line change
    @@ -10,7 +10,8 @@
    import urllib3
    from websockets.sync.client import connect

    from findmyfriends.useragent import ANISETTE_CLIENT_INFO, ANISETTE_USER_AGENT
    ANISETTE_CLIENT_INFO = "<MacBookPro18,3> <Mac OS X;13.4.1;22F8> <com.apple.AOSKit/282 (com.apple.dt.Xcode/3594.4.19)>"
    ANISETTE_USER_AGENT = "akd/1.0 CFNetwork/978.0.7 Darwin/18.7.0"

    urllib3.disable_warnings()

  2. @JJTech0130 JJTech0130 revised this gist Jan 6, 2025. 1 changed file with 5 additions and 6 deletions.
    11 changes: 5 additions & 6 deletions anisette.py
    View file
    Original file line number Diff line number Diff line change
    @@ -10,27 +10,26 @@
    import urllib3
    from websockets.sync.client import connect

    ANISETTE_CLIENT_INFO = "<MacBookPro18,3> <Mac OS X;13.4.1;22F8> <com.apple.AOSKit/282 (com.apple.dt.Xcode/3594.4.19)>"
    ANISETTE_USER_AGENT = "akd/1.0 CFNetwork/978.0.7 Darwin/18.7.0"
    from findmyfriends.useragent import ANISETTE_CLIENT_INFO, ANISETTE_USER_AGENT

    urllib3.disable_warnings()

    logger = logging.getLogger(__name__)

    anisette_state = {}


    def generate_anisette() -> dict:
    global anisette_state
    try:
    return _local_anisette()
    except:
    except Exception:
    logger.debug("Falling back to remote Anisette")
    return _remote_anisette(anisette_state)



    def _local_anisette() -> dict:
    #logger.debug("Using local anisette generation")
    # logger.debug("Using local anisette generation")
    """Generates anisette data using AOSKit locally"""

    import objc
    @@ -204,4 +203,4 @@ def _get_headers(state: dict):
    return {
    "X-Apple-I-MD": r.json()["X-Apple-I-MD"],
    "X-Apple-I-MD-M": r.json()["X-Apple-I-MD-M"],
    }
    }
  3. @JJTech0130 JJTech0130 revised this gist Jan 6, 2025. 1 changed file with 1 addition and 1 deletion.
    2 changes: 1 addition & 1 deletion anisette.py
    View file
    Original file line number Diff line number Diff line change
    @@ -24,7 +24,7 @@ def generate_anisette() -> dict:
    try:
    return _local_anisette()
    except:
    logger.warning("Falling back to remote Anisette")
    logger.debug("Falling back to remote Anisette")
    return _remote_anisette(anisette_state)


  4. @JJTech0130 JJTech0130 revised this gist Jan 6, 2025. 1 changed file with 7 additions and 3 deletions.
    10 changes: 7 additions & 3 deletions anisette.py
    View file
    Original file line number Diff line number Diff line change
    @@ -21,12 +21,16 @@

    def generate_anisette() -> dict:
    global anisette_state
    #return _remote_anisette(anisette_state)
    return _local_anisette()
    try:
    return _local_anisette()
    except:
    logger.warning("Falling back to remote Anisette")
    return _remote_anisette(anisette_state)



    def _local_anisette() -> dict:
    logger.debug("Using local anisette generation")
    #logger.debug("Using local anisette generation")
    """Generates anisette data using AOSKit locally"""

    import objc
  5. @JJTech0130 JJTech0130 created this gist Dec 16, 2024.
    203 changes: 203 additions & 0 deletions anisette.py
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,203 @@
    import base64
    import json
    import logging
    import plistlib
    import random
    import uuid
    from datetime import datetime

    import requests
    import urllib3
    from websockets.sync.client import connect

    ANISETTE_CLIENT_INFO = "<MacBookPro18,3> <Mac OS X;13.4.1;22F8> <com.apple.AOSKit/282 (com.apple.dt.Xcode/3594.4.19)>"
    ANISETTE_USER_AGENT = "akd/1.0 CFNetwork/978.0.7 Darwin/18.7.0"

    urllib3.disable_warnings()

    logger = logging.getLogger(__name__)

    anisette_state = {}

    def generate_anisette() -> dict:
    global anisette_state
    #return _remote_anisette(anisette_state)
    return _local_anisette()


    def _local_anisette() -> dict:
    logger.debug("Using local anisette generation")
    """Generates anisette data using AOSKit locally"""

    import objc
    from Foundation import NSBundle, NSClassFromString # type: ignore

    AOSKitBundle = NSBundle.bundleWithPath_(
    "/System/Library/PrivateFrameworks/AOSKit.framework"
    )
    objc.loadBundleFunctions( # type: ignore
    AOSKitBundle, globals(), [("retrieveOTPHeadersForDSID", b"")]
    )
    util = NSClassFromString("AOSUtilities")

    h = util.retrieveOTPHeadersForDSID_("-2")

    return {
    "X-Apple-I-MD": str(h["X-Apple-MD"]),
    "X-Apple-I-MD-M": str(h["X-Apple-MD-M"]),
    }


    def _gsa_url_bag():
    r = requests.get(
    "https://gsa.apple.com/grandslam/GsService2/lookup",
    verify=False,
    headers={
    # We have to provide client info so that the server knows which version of the bag to give us
    "X-Mme-Client-Info": "<MacBookPro18,3> <Mac OS X;13.4.1;22F8> <com.apple.AOSKit/282 (com.apple.dt.Xcode/3594.4.19)>",
    "User-Agent": "Xcode",
    },
    )
    return plistlib.loads(r.content)


    ANISETTE_SERVER_WS = "wss://ani.sidestore.io/v3/provisioning_session"
    ANISETTE_SERVER_HEADERS = "https://ani.sidestore.io/v3/get_headers"


    def _remote_anisette(state: dict) -> dict:
    if "adi_pb" not in state:
    _provision(state)
    return _get_headers(state)


    HEADERS = {
    "User-Agent": ANISETTE_USER_AGENT,
    "X-Apple-Baa-E": "-10000",
    "X-Apple-I-MD-LU": "0",
    "X-Mme-Device-Id": str(uuid.uuid4()).upper(),
    "X-Apple-Baa-Avail": "2",
    "X-Mme-Client-Info": ANISETTE_CLIENT_INFO,
    "X-Apple-I-Client-Time": datetime.utcnow().replace(microsecond=0).isoformat() + "Z",
    "Accept-Language": "en-US,en;q=0.9",
    "X-Apple-Client-App-Name": "akd",
    "Accept": "*/*",
    "Content-Type": "application/x-www-form-urlencoded",
    "X-Apple-Baa-UE": "AKAuthenticationError:-7066|com.apple.devicecheck.error.baa:-10000",
    "X-Apple-Host-Baa-E": "-7066",
    }


    def _start_provisioning() -> str: # spim
    body = {"Header": {}, "Request": {}}
    body = plistlib.dumps(body)
    r = requests.post(
    _gsa_url_bag()["urls"]["midStartProvisioning"],
    verify=False,
    data=body,
    headers=HEADERS,
    )
    b = plistlib.loads(r.content)
    logger.debug(b)
    return b["Response"]["spim"]


    def _end_provisioning(cpim: str) -> tuple: # ptm, tk, rinfo
    body = {
    "Header": {},
    "Request": {
    "cpim": cpim,
    },
    }
    body = plistlib.dumps(body)
    r = requests.post(
    _gsa_url_bag()["urls"]["midFinishProvisioning"],
    verify=False,
    data=body,
    headers=HEADERS,
    )
    b = plistlib.loads(r.content)
    logger.debug(b)
    return (
    b["Response"]["ptm"],
    b["Response"]["tk"],
    b["Response"]["X-Apple-I-MD-RINFO"],
    )


    def _provision(state: dict):
    identifier = base64.b64encode(random.randbytes(16)).decode()

    rinfo = None
    adi_pb = None

    with connect(ANISETTE_SERVER_WS) as websocket:
    spim = _start_provisioning()
    # Handle messages as the server sends them
    while True:
    message = json.loads(websocket.recv())
    logger.debug(f"Received: {message}")

    if message["result"] == "GiveIdentifier":
    websocket.send(
    json.dumps(
    {
    "identifier": identifier,
    }
    )
    )
    elif message["result"] == "GiveStartProvisioningData":
    websocket.send(
    json.dumps(
    {
    "spim": spim,
    }
    )
    )
    elif message["result"] == "GiveEndProvisioningData":
    cpim = message["cpim"]
    ptm, tk, rinfo = _end_provisioning(cpim)
    rinfo = rinfo

    logger.debug(f"Provisioning data: {ptm}, {tk}, {rinfo}")
    websocket.send(
    json.dumps(
    {
    "ptm": ptm,
    "tk": tk,
    }
    )
    )
    elif message["result"] == "ProvisioningSuccess":
    adi_pb = message["adi_pb"]
    logger.debug("Provisioning success")
    break
    elif message["result"] == "Timeout":
    logger.debug("TIMEOUT")
    break
    else:
    logger.debug(f"Unknown message: {message}")

    state["rinfo"] = rinfo
    state["identifier"] = identifier
    state["adi_pb"] = adi_pb


    def _get_headers(state: dict):
    adi_pb = state["adi_pb"]
    rinfo = state["rinfo"]
    identifier = state["identifier"]

    r = requests.post(
    ANISETTE_SERVER_HEADERS,
    verify=False,
    json={
    "adi_pb": adi_pb,
    "identifier": identifier,
    },
    )
    # logger.debug(r.content)
    return {
    "X-Apple-I-MD": r.json()["X-Apple-I-MD"],
    "X-Apple-I-MD-M": r.json()["X-Apple-I-MD-M"],
    }