Certified Ethical Hacker

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search


Certified Ethical Hacker (CEH)
Issuing OrganizationEC-Council
Validity duration3 years
Subject
FocusEthical Hacking
Costs
Preparation100 US$
Exam950 US$
Renewal fee80 US$ (annually)
Requirements
two years of experience
TypeMultiple Choice
Duration4 hours
Relations


Certified Ethical Hacker (C|EH) is a qualification obtained by demonstrating knowledge of assessing the security of computer systems by looking for weaknesses and vulnerabilities in target systems, using the same knowledge and tools as a malicious hacker, but in a lawful and legitimate manner to assess the security posture of a target system. This knowledge is assessed by answering multiple choice questions regarding various ethical hacking techniques and tools. The code for the C|EH exam is 312-50. This certification has now been made a baseline with a progression to the C|EH (Practical), launched in March 2018, a test of penetration testing skills in a lab environment where the candidate must demonstrate the ability to apply techniques and use penetration testing tools to compromise various simulated systems within a virtual environment.[1]

Ethical hackers are employed by organizations to penetrate networks and computer systems with the purpose of finding and fixing security vulnerabilities. The EC-Council offers another certification, known as Certified Network Defense Architect (CNDA). This certification is designed for United States Government agencies and is available only to members of selected agencies including some private government contractors, primarily in compliance to DOD Directive 8570.01-M.[1] It is also ANSI accredited and is recognized as a GCHQ Certified Training (GCT).

EC-Council’s VAPT Certification Track[edit]

The C|EH is a part of EC-Council’s VAPT Certification Track, which progresses to the C|EH (Practical), the EC-Council Certified Security Analyst (ECSA), ECSA (Practical), and finally, the most advanced penetration test, the Licensed Penetration Tester (Master).

Examination[edit]

Certification is achieved by taking the C|EH examination after having either attended training at an Accredited Training Center (ATC),[2] or completed through EC-Council’s learning portal, iClass. If a candidate opts to self-study, an application must be filled out and proof submitted of two years of relevant information security work experience. Those without the required two years of information security related work experience can request consideration of educational background.[3] The current version of the C|EH is V10 which uses the EC-Council's exam code 312-50, as the earlier versions did. Although the new version V10 has recently been launched,[4] this exam has 125 multiple-choice questions, with a 4-hour time limit,[5]

The EC-Council and various ATCs (Accredited Training Center) administer the C|EH examination.

Members holding the C|EH/CNDA designation (as well as other EC-Council certifications) must seek re-certification under this program every three years, for a minimum of 120 credits.[6]

Top Critical Components of the C|EH[edit]

The C|EH focuses on the latest malware attacks, the latest hacking tools, and the new emerging attack vectors in the cyberspace.  It includes hacking challenges at the end of every module and is built 100% in compliance to the NICE 2.0 Framework to ensure a systematic job role mapping.

C|EH is also accredited by the American National Standard Institute, has received the GCT (GCHQ Certified Training) accreditation, and is a recognized certification for the DoD’s computer network defense Service Providers (CND-SP’s), a specialized personnel classification within the United States Department of Defense’s information assurance workforce among many other recognitions.

Many intelligence agencies including the Pentagon, FBI, the US Army, and most Fortune 500 companies prefer the C|EH program to enhance the knowledge and skills of their security personnel.

References[edit]

  1. ^ "Certified Network Defense Architect - EC-Council". eccouncil.org. Archived from the original on 2012-06-12.
  2. ^ "Global sites - EC-Council". eccouncil.org. Archived from the original on 2014-07-27.
  3. ^ "CEH: Certified Ethical Hacking course from EC-Council". eccouncil.org. Archived from the original on 2012-10-06.
  4. ^ "Archived copy". Archived from the original on 2012-06-10. Retrieved 2012-05-27.
  5. ^ Ethical Hacking and Countermeasures (312-50) Exam. "CEH v9 Exam (312-50)" (PDF). Retrieved 2016-09-27.
  6. ^ "Certified Ethical Hacking (CEH) — What You Need to Know - Cybrary". Cybrary. 2017-11-21. Retrieved 2017-11-22.

Further reading[edit]

  • Walker, Matt; CEH Certified Ethical Hacker All-In-One Exam Guide, The McGraw-Hill Companies, 2011. ISBN 978-0-07-177229-7
  • Oriyano, Sean-Philip; CEH: Certified Ethical Hacker Version 8 Study Guide, Sybex Publishing, 2014. ISBN 978-1-118-64767-7
  • Gregg, Michael; Certified Ethical Hacker Exam Prep, Que Publishing, 2006. ISBN 978-0-7897-3531-7
  • DeFino, Steven; Greenblatt, Larry; Official Certified Ethical Hacker Review Guide: for Version 7.1 (EC-Council Certified Ethical Hacker (Ceh)), Delmar Cengage Learning, March 2, 2012. ISBN 978-1-1332-8291-4
  • IP Specialist; CEH v10: EC-Council Certified Ethical Hacker Complete Training Guide with Practice Labs: Exam: 312-50, May 2018, ISBN 978-1983005473
  • Ric Messier; CEH v10 Certified Ethical Hacker Study Guide, Sybex publishing, May 7, 2019. ISBN 978-1119533191

External links[edit]