Certified Ethical Hacker (CEH)

<cert_exam> Certified Ethical Hacker (CEH)

The Certified Ethical Hacker (CEH) program is designed to teach information security professionals how to identify and exploit vulnerabilities in computer systems, networks, and applications.

Focus

The Certified Ethical Hacker (CEH) certification focuses on Information Security

Exam Duration

The Certified Ethical Hacker (CEH) exam duration is 4 hours

Num of Question

The exam contains a total of 125

Exam Fee

The exam fee is $50-$100 (depending on the vendor and location).

Exam Validity

The CCRN-Pediatric certification is valid for 3 years.

Prior Certification

• No prior certification is required, but 2 years of work experience in information security is highly recommended

Exam Format

The Certified Ethical Hacker (CEH) exam is a Multiple choice and hands-on type questions

Passing Conditions

To pass Certified Ethical Hacker (CEH) exam, applicants must achieve a minimum score of Pass with a minimum of 220 out of 300 total points

Who Should Take

Information security professionals, network administrators, security analysts, penetration testers, incident responders, and anyone interested in pursuing a career in information security

• Ethical Hacker
• Penetration Tester
• Security Consultant
• Information Security Manager
• Network Administrator

Prerequisites

2 years of work experience in information security or a related field

Or can substitute with certifications:

• CompTIA Security+ or equivalent
• Certified Information Systems Security Professional (CISSP) certification is also considered equivalent

Certification Process

• Step 01: Meet the prerequisites (work experience, education, and training)
• Step 02: Register for the certification exam through the EC-Council website
• Step 03: Take the exam at an authorized testing center
• Step 04: Maintain the certification by completing continuing education requirements and adhering to the EC-Council code of ethics

Domains with Weights

• Domain 1: Network Security (17%): Network security concepts, protocols, and techniques, including vulnerabilities, threats, and countermeasures
• Domain 2: Vulnerability Assessments (19%): Vulnerability assessment tools and techniques, including network and host-based assessments
• Domain 3: System Hacking (16%): Windows and Linux system hacking techniques, including password cracking and privilege escalation
• Domain 4: Web Application Hacking (17%): Web application hacking techniques, including SQL injection, cross-site scripting, and cross-site request forgery
• Domain 5: Malware Threats (13%): Malware types, threats, and countermeasures, including Trojan horses, rootkits, and viruses
• Domain 6: Wireless Network Hacking (12%): Wireless network hacking techniques, including encryption, authentication, and anti-jamming
• Domain 7: Cryptography (11%): Cryptography concepts and techniques, including encryption, decryption, and hashing
• Domain 8: Mobile Platform Hacking (10%): Mobile platform hacking techniques, including iOS and Android device rooting and jailbreaking
• Domain 9: Cloud Computing (09%): Cloud computing security concepts and threats, including cloud storage and deployment models
• Domain 10: Incident Management (07%): Incident response and management techniques, including response planning, containment, and recovery