CEH Exam Overview
What to Expect
The Certified Ethical Hacker exam costs $950 to $1,199 depending on the training option. EC-Council requires either their official training or proof of two years of information security experience to qualify. You'll face 125 questions in 240 minutes, giving you roughly 1 minute and 55 seconds per question. Percentage-based passing with a variable cut score between 60% and 85% depending on the exam form. The form is randomly assigned and the cut score adjusts for difficulty.
Prerequisites and Audience
Two years of information security work experience OR completion of an official EC-Council training course. The training path is more common since it also prepares you for the exam. Penetration testers, vulnerability analysts, security consultants, and anyone in offensive security roles. CEH covers the hacker methodology from a defensive perspective.
Staying Certified
Three-year cycle requiring 120 EC-Council Continuing Education (ECE) credits and an $80 annual membership fee.
CEH What the Exam Tests
The exam covers hacking methodology: footprinting, scanning, enumeration, system hacking, malware analysis, sniffing, social engineering, denial of service, session hijacking, web server and application hacking, wireless hacking, IoT hacking, and cryptography. It's a knowledge exam, not a practical assessment.
Network and Perimeter Hacking
Network and Perimeter Hacking at 21% is a substantial portion of the exam. You can't afford to be weak here. Focus on understanding the core concepts and common scenario patterns.
Reconnaissance Techniques
Reconnaissance Techniques at 18% is a substantial portion of the exam. You can't afford to be weak here. Focus on understanding the core concepts and common scenario patterns.
Web Application Hacking
Web Application Hacking accounts for 16% of questions. While not the heaviest domain, it can make the difference between passing and failing. Don't neglect it.
System Hacking Phases and Attack Techniques
System Hacking Phases and Attack Techniques accounts for 12% of questions. While not the heaviest domain, it can make the difference between passing and failing. Don't neglect it.
Question Format
Multiple-choice only. 125 questions in 240 minutes. Questions often present a scenario and ask which tool or technique would be used.
CEH How to Prepare
Study Timeline
Two to three months if you have security experience. The material is broad, covering 20 modules of hacking methodology. If you're new to offensive security, budget four months.
Top Resources
EC-Council iLabs for hands-on practice, the official CEH courseware, and CTF platforms like TryHackMe and HackTheBox for practical skills. Matt Walker's CEH All-in-One guide is a popular study reference.
Common Mistakes
Assuming CEH is a practical hacking exam like OSCP. CEH is primarily knowledge-based and tests your understanding of tools, techniques, and methodology. You need to know what Nmap flags do, but you won't run Nmap during the exam.
Hands-On Advice
Set up a home lab with Kali Linux and vulnerable VMs like Metasploitable. Practice the full reconnaissance through exploitation workflow. Run Nmap scans, use Burp Suite against DVWA, crack passwords with John the Ripper. Even though the exam is multiple-choice, hands-on experience makes the theory stick.
CEH Why Practice Tests Matter
Practice tests are the single most effective study tool for the CEH exam. They reveal your weak domains before the real exam does, and getting questions wrong in practice is how you learn. Each practice test here mirrors the real exam format: 125 questions, timed at 240 minutes, with the same 9-domain distribution.
Don't just take practice tests and check your score. Review every wrong answer and understand why the correct option is better. For the CEH, pay special attention to Network and Perimeter Hacking (21%) and Reconnaissance Techniques (18%) questions since they carry the most weight.
