CEH - Certified Ethical Hacker
Short Summary
Certified Ethical Hacker (CEH)
The Certified Ethical Hacker (CEH) is a globally recognized cybersecurity designation developed by EC-Council. It validates offensive security expertise, including penetration testing, vulnerability assessment, and ethical hacking techniques — all delivered through a lawful, structured framework.
CEH v13 includes 20 modules, 550+ attack techniques, and 221 hands-on labs. Candidates explore five phases of ethical hacking: reconnaissance, access exploitation, enumeration, persistence, and obfuscation. The program prepares professionals to simulate threats, identify vulnerabilities, and strengthen system defenses.
Candidates may qualify via two pathways:
- Training Route: No experience required; must complete official EC-Council training.
- Experience Route: Minimum of 2 years in information security; requires application and $100 eligibility fee.
The CEH exam includes 125 multiple-choice questions over 4 hours, delivered via Pearson VUE or EC-Council’s exam portal. An optional CEH Master practical exam is available for hands-on validation.
To maintain active status, certified professionals must earn 120 ECE credits over 3 years, submit 40 credits annually, and pay an $80 annual membership fee.
Audience: Penetration testers, security analysts, IT auditors, network defenders, and cybersecurity professionals
Website:
Certified Ethical Hacker – EC-Council
Property & Casualty Jobs That Benefit Most
Course Description
🎯 Purpose of the CEH – Certified Ethical Hacker
The Certified Ethical Hacker (CEH) designation, issued by EC-Council, validates a professional’s ability to think and operate like a malicious hacker—but with lawful intent. CEH holders are trained to simulate cyberattacks, uncover vulnerabilities, and help organizations strengthen their defenses before real threats strike.
CEH is recognized globally—including by the U.S. Department of Defense—and is mapped to the NICE Cybersecurity Workforce Framework. It’s a foundational credential for offensive security roles and red team operations.
“To catch a hacker, you need to think like one.” That’s the CEH ethos.
📚 Topics Covered in the CEH Program
CEH v13 includes 20 modules, 221 hands-on labs, and over 550 attack techniques. Key domains include:
- Reconnaissance & Footprinting
OSINT, scanning, enumeration - System Hacking & Malware Threats
Privilege escalation, steganography, trojans, worms - Network & Perimeter Attacks
Sniffing, social engineering, DoS/DDoS - Web & Application Exploits
SQL injection, server hacking, session hijacking - Wireless, Mobile, IoT, and OT Hacking
Protocol exploits, device vulnerabilities - Cloud Security & Cryptography
Cloud attack vectors, encryption techniques - Evading Defenses
IDS/IPS, firewalls, honeypots
The CEH exam includes 125 multiple-choice questions (4 hours), and an optional CEH Practical exam (6 hours) for hands-on mastery.
🧭 Specialization Options
While CEH itself is a generalist offensive security credential, EC-Council offers advanced tracks:
- CEH Master – Combines theory (MCQ exam) with a 6-hour practical lab exam
- Licensed Penetration Tester (LPT) – For advanced red team operators
- Certified Threat Intelligence Analyst (CTIA) – Focuses on threat modeling and intelligence
- Certified SOC Analyst (CSA) – For real-time monitoring and incident response
These allow CEH holders to specialize in areas like red teaming, threat hunting, or SOC operations.
Cost
💰 Cost Breakdown for CEH – Certified Ethical Hacker
| Category | Estimated Cost (USD) | Notes |
| Application Fee | $100 | Required for self-study candidates who skip official training |
| Exam Voucher | $950–$1,199 | Covers the 125-question, 4-hour multiple-choice exam |
| Training (Self-Paced) | $500–$1,500 | Includes recorded content, may bundle labs and voucher |
| Training (Instructor-Led) | $1,500–$3,500 | Live sessions with labs and exam voucher included |
| Books & Study Materials | $50–$300 | Optional guides, practice exams, and lab access |
| CEH Practical Exam (Optional) | $550–$600 | 6-hour hands-on lab exam for CEH Master title |
| Retake Fee | $100–$499 | Depends on training status and number of attempts |
| Recertification Fee | $80–$150 every 3 years | Requires 120 EC-Council Continuing Education credits |
📊 Total Estimated Cost
| Path | Estimated Total |
| Self-Study + Exam Only | ~$1,100–$1,400 |
| Training Bundle + Exam | ~$2,200–$3,500 |
| Full Package + CEH Practical | ~$2,800–$4,100 |
The final cost depends on your training path, whether you add the CEH Practical, and how you prepare. EC-Council often offers bundled discounts, and some employers may sponsor the certification.
.
Prerequisites
✅ Prerequisites for CEH – Certified Ethical Hacker
EC-Council offers two pathways to qualify for the CEH exam:
- Training Route
- No prior experience required
- Must complete an official CEH training course through EC-Council or an Accredited Training Center
- Training includes hands-on labs, instruction, and exam prep
- Work Experience Route
- Minimum 2 years of documented work experience in information security or related fields, such as:
- Network security
- Systems administration
- Web application security
- Cloud security
- Cryptography
- Must submit an application and pay a $100 non-refundable eligibility fee
If you haven’t taken official training, you must apply through the experience route and get approval from EC-Council before purchasing your exam voucher.
So yes—CEH is accessible to beginners if they go through the training route. But for self-study or direct exam access, you’ll need to prove your experience.
Renewal Requirements
🔄 CEH Renewal Requirements
To keep your CEH certification active, you must:
- Earn 120 ECE Credits Every 3 Years
- ECE = EC-Council Continuing Education
- Credits can be earned through:
- Attending IT security courses, webinars, or conferences
- Publishing articles or books on cybersecurity
- Teaching or volunteering in the field
- Identifying new vulnerabilities
- Reading and reviewing IT security literature
- Submit 40 ECE Credits Annually
- You must log at least 40 credits each year (not just all at once at the end)
- Credits must be submitted by February 1 of the following year
- Maintain EC-Council Membership
- Annual membership fee: $80 USD
- Required to submit ECE credits and maintain certification status
- Avoid Suspension
- If you don’t meet the requirements within the 3-year cycle, your certification will be suspended for 1 year
- Failure to meet requirements during suspension leads to revocation of the certification
💰 CEH Renewal Fees
| Fee Type | Amount | Notes |
| Annual Membership Fee | $80/year | Required to submit ECE credits |
| Renewal Training (optional) | ~$200–$500 | For online courses to earn ECE credits |
| Recertification Exam (if needed) | ~$400–$500 | If you choose to retake the exam instead of earning credits |
Average Time to Complete Course
The time it takes to complete the Certified Ethical Hacker (CEH) certification depends on your learning format and pace. Here’s a breakdown:
⏳ Typical CEH Completion Time
🧑🏫 Instructor-Led or Bootcamp Format
- Duration: 5 days to 2 weeks (intensive)
- Ideal for professionals who want fast, immersive training
- Includes hands-on labs and exam prep
🖥️ Self-Paced Online Training
- Duration: 1 to 3 months on average
- Requires ~40–60 hours of study time
- Flexible schedule—great for working professionals
📚 Academic or Extended Programs
- Duration: 3 to 6 months
- Often part of broader cybersecurity curricula
- Includes deeper coverage and more hands-on practice
🧠 Factors That Affect Duration
- Prior experience in IT or cybersecurity can shorten study time
- Study format (live vs. self-paced)
- Time commitment per week (e.g., 5 hours/week vs. 15 hours/week)
Exams
| Details | |
| Number of Exams | 1 main exam (CEH), optional CEH Master practical exam |
| Format | Multiple-choice questions (MCQs) |
| Number of Questions | 125 MCQs |
| Duration | 4 hours for the CEH exam; 6 hours for CEH Master practical exam |
| Passing Score | Varies by exam form; typically around 60–85% |
| Delivery Method | Proctored exam via Pearson VUE or EC-Council Exam Portal |
| Testing Window | Flexible scheduling—once approved, you can book your exam anytime |
| Languages Offered | English (other languages may be available depending on region) |
🧠 CEH Master (Optional Practical Exam)
- Format: 20 real-world challenges
- Duration: 6 hours
- Purpose: Demonstrates hands-on ethical hacking skills
- Credential Earned: CEH Master (if you pass both the theory and practical exams)
Certifying Body
The certifying body for the Certified Ethical Hacker (CEH) designation is the EC-Council, which stands for the International Council of E-Commerce Consultants.
🏛 About EC-Council
- Founded: 2001
- Headquarters: Albuquerque, New Mexico, USA
- Focus: Cybersecurity education and certifications
- Other Certifications Offered:
- Certified Network Defender (CND)
- Computer Hacking Forensic Investigator (CHFI)
- Licensed Penetration Tester (LPT)
- EC-Council Certified Security Analyst (ECSA)
EC-Council is recognized globally and its certifications are often mapped to government and industry frameworks, including the U.S. Department of Defense and NICE Cybersecurity Workforce Framework.
