By Kimberly Graves, ISBN:978-0-7821-4437-6
Sybex Publishing, www.sybex.com  On Amazon.com for $19.79, 58 used and new from $15.58

I bought this mainly to review, and for the CD-ROM. I wanted to try and get a little more current from my CEH v.2.5 up to the newer version. Sure enough, it does include a whopping 10 pages on the last module in the current CEH courseware, "Penetration testing".

This book kind of disappointed me as soon as I unwrapped it; it's ONLY 238 pages! I'm used to a LOT more pages than that. On the other hand, It would be something neat and lightweight to be reading in the airport while waiting for your airplane.

This book seems to cover most all the basics. The accompanying CD-ROM contains a test engine with two different tests, and a flashcard thingy so you can quiz yourself. Sadly, I DON'T see anything in the text about URL De-Obfuscation, just as it wasn't included in the class I attended back in July 04, but there IS a question about it in the test. Refreshingly, the test question asks you de-obfuscate in the opposite direction!

The CD contains flashcards that can run on your PC, Pocket PC, or Palm handheld.

The basics of how to determine if SQL Injection is possible are covered.

The basics of footprinting, and session hacking, are discussed.

AS mentioned, this book is a REVIEW for those looking to pass the exam. Lightweight, easy to carry, I would have preferred something thicker. Maybe about 350 pages, I would have some more confidence in it.

If you're looking to do the exam, the flashcards and the test engine would come in handy while sitting at the aforementioned airport gate. The back cover says the "book includes over 300 review questions and practice tools".

Best of all, as books go, it's fairly cheap! $19.79 new on Amazon, and with Free Shipping. How many other CEH books are there out there for about $20.00???