CEH (Certified Ethical Hacker)
EC-Council
Complete guide to passing the CEH (Certified Ethical Hacker) exam on your first attempt.
$950-$1199
~60%
3 years
Global
EC-Council
$80k-$130k
Are you ready for CEH (Certified Ethical Hacker)?
Loading quiz...
Complete Overview
The Certified Ethical Hacker (CEH) certification from EC-Council is the world's most recognized credential for validating skills in ethical hacking and penetration testing. The CEH program trains professionals to think and act like malicious hackers (but legally and legitimately) to identify vulnerabilities in target systems before cybercriminals can exploit them. The certification covers a comprehensive range of hacking techniques including footprinting, scanning, enumeration, system hacking, malware threats, sniffing, social engineering, denial-of-service attacks, session hijacking, web server hacking, SQL injection, wireless network hacking, cryptography, and cloud computing security. With cyberattacks costing organizations billions annually and the cybersecurity skills gap widening, CEH-certified professionals are in unprecedented demand. The certification demonstrates to employers that you possess the tactical knowledge and hands-on skills necessary to conduct authorized security assessments and improve organizational security posture.
Why Get CEH (Certified Ethical Hacker) Certified?
Globally recognized ethical hacking certification with 200,000+ certified professionals
Required or preferred for many security analyst and penetration tester positions
Covers comprehensive offensive security techniques and tools
Meets DoD 8570 compliance requirements for military and government positions
Average salary premium of $15,000-$25,000 for CEH-certified professionals
Foundation for advanced certifications like OSCP, GPEN, and CEH Master
Hands-on practical exam option validates real-world skills
Exam Format & Structure
Duration
4 hours
Questions
125 multiple-choice questions
Passing Score
60-85% (varies by exam form)
Question Types
- Knowledge-based questions
- Scenario-based questions
- Tool identification
- Attack methodology
Delivery Method
Pearson VUE test centers or online proctored
Exam Domains & Topics
Understand information security fundamentals, ethical hacking concepts, and legal considerations.
Key Topics to Master:
- Information security overview
- Ethical hacking concepts
- Cyber kill chain
- Hacking methodologies
- Legal considerations
- Information security laws
Master footprinting, scanning, and enumeration techniques to gather intelligence about targets.
Key Topics to Master:
- Footprinting concepts
- OSINT techniques
- Network scanning
- Port and service discovery
- Enumeration techniques
- Vulnerability assessment
Learn to gain access, escalate privileges, maintain access, and cover tracks on target systems.
Key Topics to Master:
- Password cracking
- Privilege escalation
- Backdoors and rootkits
- Steganography
- Covering tracks
- Malware threats
Understand attacks on network infrastructure including sniffing, session hijacking, and evasion.
Key Topics to Master:
- Sniffing attacks
- Session hijacking
- DoS/DDoS attacks
- Firewall evasion
- IDS evasion
- Honeypots
Master web application vulnerabilities and attack techniques including SQL injection and XSS.
Key Topics to Master:
- OWASP Top 10
- SQL injection
- Cross-site scripting (XSS)
- Session management attacks
- Web server attacks
- API vulnerabilities
Understand wireless security protocols and attacks on Wi-Fi and Bluetooth networks.
Key Topics to Master:
- Wireless encryption
- WEP/WPA/WPA2 attacks
- Bluetooth hacking
- Wireless sniffing
- Evil twin attacks
- Wi-Fi security tools
Learn attack vectors for mobile devices, IoT systems, and operational technology environments.
Key Topics to Master:
- Mobile platform attacks
- Android/iOS vulnerabilities
- IoT attack surface
- OT/SCADA security
- Mobile malware
- MDM bypass
Understand cloud security threats and cryptographic attack techniques.
Key Topics to Master:
- Cloud computing threats
- Container security
- Serverless security
- Cryptography concepts
- Cryptanalysis attacks
- PKI
Recommended Study Plan
- 1Complete EC-Council courseware chapters 1-5
- 2Set up Kali Linux lab environment
- 3Practice OSINT tools (Maltego, theHarvester)
- 4Learn Nmap scanning techniques
- 5Complete reconnaissance CTF challenges
- 1Study system hacking phases
- 2Practice password cracking with Hashcat, John
- 3Learn privilege escalation techniques
- 4Study network sniffing with Wireshark
- 5Complete TryHackMe rooms
- 1Master OWASP Top 10 vulnerabilities
- 2Practice SQL injection on DVWA
- 3Learn XSS attack techniques
- 4Study web server vulnerabilities
- 5Complete PortSwigger Web Security Academy
- 1Study wireless, mobile, and cloud security
- 2Review cryptography concepts
- 3Complete full practice exams
- 4Review weak areas
- 5Memorize key tools and ports
Ready to pass CEH (Certified Ethical Hacker)?
Get 500+ practice questions, video walkthroughs, and a pass guarantee.
Best Study Resources
EC-Council Official Courseware
Course MaterialOfficial study materials covering all exam domains with hands-on labs.
Included with training
CEH v12 Study Guide by Matt Walker
BookComprehensive study guide with practice questions and exam tips.
$50-60
TryHackMe
Hands-on PlatformInteractive learning paths and CTF-style rooms for practical experience.
Free-$14/month
Hack The Box
Practice LabsReal-world penetration testing labs to develop hands-on skills.
Free-$18/month
Boson CEH Practice Exams
Practice TestsHigh-quality practice exams that closely simulate the real exam format.
$99
DVWA (Damn Vulnerable Web Application)
Practice LabIntentionally vulnerable web app for practicing web exploitation techniques.
Free
Common Mistakes to Avoid
Focusing only on tools without understanding concepts
Understand the 'why' behind each attack technique. Exam tests conceptual knowledge, not just tool usage.
Neglecting the practical knowledge component
Even for the multiple-choice exam, hands-on experience helps understand scenarios better.
Not memorizing common port numbers and protocols
Create flashcards for common ports (21, 22, 23, 25, 53, 80, 443, etc.) and their associated services.
Skipping wireless and mobile security sections
These sections are tested. Understand WEP/WPA differences, mobile attack vectors, and IoT vulnerabilities.
Underestimating cryptography section
Learn encryption types, hashing algorithms, and common cryptographic attacks thoroughly.
Not practicing with actual tools
Install Kali Linux and practice with Nmap, Metasploit, Burp Suite, Wireshark, and other key tools.
Exam Day Tips
- 1
Read each question completely - scenario details matter
- 2
Eliminate obviously wrong answers first
- 3
When in doubt, choose the most comprehensive security approach
- 4
Watch for questions testing methodology order (footprinting before scanning)
- 5
Pay attention to question context - internal vs external, with/without authorization
- 6
Manage time carefully - you have about 1.9 minutes per question
- 7
Mark difficult questions for review and move on
- 8
Trust your preparation - don't second-guess yourself
Career Paths & Salary Ranges
Penetration Tester
Conduct authorized attacks on systems to identify vulnerabilities and security weaknesses.
$90,000-$130,000
Security Analyst
Monitor security infrastructure, analyze threats, and respond to security incidents.
$75,000-$110,000
Vulnerability Analyst
Assess systems for vulnerabilities and recommend remediation strategies.
$85,000-$120,000
Security Consultant
Advise organizations on security strategy, conduct assessments, and implement security solutions.
$100,000-$150,000
Red Team Operator
Simulate advanced persistent threats to test organizational security defenses.
$120,000-$180,000
Prerequisites & Requirements
- 2 years of information security experience (or attend official training)
- Understanding of TCP/IP networking fundamentals
- Familiarity with operating systems (Windows, Linux)
- Basic knowledge of web technologies (HTTP, HTML, JavaScript)
- Understanding of common security concepts and terminology
- Recommended: CompTIA Security+ or equivalent knowledge
Frequently Asked Questions
Is CEH worth it in 2026?
Yes, CEH remains valuable for entry to mid-level security roles, especially in government and enterprise. It's recognized globally and meets compliance requirements. For advanced roles, complement it with OSCP.
What's the difference between CEH and CEH Practical?
CEH is a 125-question multiple-choice exam testing knowledge. CEH Practical is a 6-hour hands-on exam where you perform actual penetration testing tasks. Passing both earns CEH Master designation.
How hard is the CEH exam?
CEH is moderately difficult. It requires memorization of tools, ports, and attack methodologies. With 80-100 hours of dedicated study, most candidates pass on their first attempt.
CEH vs OSCP - which is better?
They serve different purposes. CEH is knowledge-based and good for beginners. OSCP is entirely practical and highly respected for penetration testing roles. Many professionals get CEH first, then OSCP.
Do I need official EC-Council training?
No, self-study is an option if you have 2 years of security experience. However, official training provides access to iLabs and official materials.
How long is CEH certification valid?
CEH is valid for 3 years. You must earn 120 ECE credits or retake the exam to recertify.
Success Stories
“Matt Walker's book and TryHackMe were my main resources. Focus on understanding attack methodology, not just memorizing tools.”
James M.
Security Analyst
“Coming from a networking background, I spent 6 weeks studying. The scenario questions were the trickiest part.”
Sarah K.
Penetration Tester
“CEH opened doors for my first security role. Combined it with OSCP later for penetration testing positions.”
Raj P.
Security Consultant
Pass CEH (Certified Ethical Hacker) — Guaranteed
94% pass rate on first attempt
One-time • Lifetime access
One-time payment