ANALISIS KEAMANAN DAN EKSPLOITASI KERNEL ANDROID 13 MENGGUNAKAN METASPLOIT REVERSE TCP

The development of information technology, especially in the mobile sector, has substantially changed the way we interact with devices. Android, as the most dominantly used mobile operating system worldwide, attracts significant attention to its security aspects. Despite improvements in Android device security, exploitation efforts continue to be carried out by security researchers and hackers using various methods, including exploitation through Reverse_TCP with tools such as Metasploit. This study aims to analyze the security of Android 13 devices using the Reverse_TCP method through Metasploit. The method used involves exploitation by sending a backdoor application, opening a Meterpreter session, and stealing data such as SMS and call logs. The research results show that Google Play Protect detects malicious applications; however, these applications can still be installed and run, indicating weaknesses in the security detection system. Reverse_TCP exploitation can lead to unauthorized access to personal data and full control over the device, posing significant risks to users. Additionally, the results also show that sensitive data such as SMS, call logs, and location can be successfully retrieved by attackers through the Meterpreter session, highlighting critical security gaps.Proposed preventive measures include the use of the Mobile Security Framework (MobSF), enabling Google Play Protect, and disabling unnecessary app permissions. This study suggests further research to address limitations and explore deeper aspects of Android security.

Keywords: Android 13, Exploitation, Metasploit, Reverse TCP, Security Analysis