What is CEH?
Administered by EC-Council, CEH stands for Certified Ethical Hacker, is a professional certification about information security of computer systems with penetration testing skills.
Is this necessary?
Compared to CISSP(Certified Information Systems Security Professional), CEH is more focused on ethical hacking techniques more practical and technical. CEH is asking how to do ethical hacking(techniques) specifically sniffing, scanning or DDoS and CISSP is asking how to secure company’s asset with BCP(Business Continuity Plan)/DRP(Disaster Recovery Plan). I assume CEH is for 2 or 3 years security engineers and CISSP is for 5 or 6 years senior level (CISO) or security manager.
I recommend this cert if you worked in this field more than 1 or 2 years and want to learn more about ethical hacking. Still no certs will get you a job, but your experience and knowledge will.
How did I study
I took a 35 hours CEH class, 9:30am to 5:30pm. I had short experience as a penetration tester. Also, I have a degree on Information Security& Assurance, which helped me to understand some terminology and concept of cyber security. I notice some of contents are pretty similar with CISSP(since I studied/ passed it last winter ), so if anyone just passed CISSP , it would be helpful to study CEH next. Personally, CISSP seems have more broad contents including copyright ,patent ,operating/physical security etc.
1. 16th May ~ 20th May , CEH 35 hrs class (1 week)
Unfortunately, I had to pay full cost (extra cost) because I didn’t have 2 years experience at that time.
2. 21th May ~ 22th July (2 months)
For study materials, I only used “Ethical Hacking and countermeasures v9” which is an EC-Council official book. I read the book three times and remember important concept liks nmap, wireshark command, scanning techniques , Asymmetric & Symmetric cipher features etc. I summarized each chapters and studied.
After then, I used “Skillset (Pro membership)”, solved 5800 questions and made 102 readiness. Skillset is really helpful to prepare the test. One month before the exam date, I took “simulated exam” on Skillset ,everyday around 10am, so i can simulate upcoming exam. Reviewing what you missed or didn’t know from the questions is really important. I got 56 score at first simulated exam, but later I went up to 84.
CEH Exam Information
- Length of exam : 4hrs
- Question format : Multiple choice (125 questions)
- Passing grade :70%
(for more details : EC-Council)
Exam date : July 22th, 2016, 10AM
I finished test in 2 hrs and 20 min and I clicked “end exam” and there’s “passed” sign on the final page, but no score details. After 2 or 3 days from test date, there’s new email from EC-council about the certificate. and I can find the details about score over there.