IMHO, whatever mentioned in the specified link / site may be true. However, there are always two sides. I believe what is mentioned is the negative side. And not mentioning the positive side is not something good.

CEH defenitely provides a platform for a newbie to study, learn and test ones knowledge in the security / ethical hacking. The certification has provided entry points to many security professionals. The level of knowledge or the domain covered may differ from certification to certification and no certification assures 100% knowledge.

I think it is also important to mention that it depends on the instructor who is teaching the course. A good instructor makes all the difference. However, I opted for the self study mode and I learned a lot during the course of my studies.

The CEH exams has improved within the last years and when I took the CEH v5 exam, I founded it to be of good quality compare to other cert exams I have taken.

Hello
I a ma newbie to security arena. I am planning to shift from my current programming/developer profile to security. Was planning to go for CEH certification as a starting point, but reading this post confused me.
Can any experienced member clear out this. I read the post mentioned in the link but it was really old. So want to know what value does it add to my resume after getting CEH (I do agree just having certification doesn't make me expert in security, but I need a start).

Thanks

I just wanted to also add that while I don't really like the EC-Council's new continuing education system that you have to use to keep your CEH up to date it really isn't any worse then the CISSP.  I just wish EC-Council would make all their requirements exactly like ISC2 so I don't have to worry about if this education qualifies for CISSP but not CEH and then trying to make up the difference.  That is kinda a pain but the EC-Council's requirements for upkeep of their certifications are quite fair.

I don't think that CEH is a scam.  Like others have mentioned it's only an entry level certification and it depends on the Instructor.  I'm a CHFI and my main line of work is Computer Forensics.  I did take the CEH class (version 5.0) and I learned a lot (Besides the Instructor that I had was outstanding) .  I did not take the exam because I rather buy some new hardware for my lab ($250 can go far sometimes especially on a tight budget).  I took the CHFI exam because it was incorporated in the price and I could not opt out of it.  Besides, just because you pass the test does not mean that you can do the job, it only means that you have gained the basic knowledge on the topic (Don't get me wrong, passing the test is a great accomplishment and anybody who takes it should be proud for passing.  I just find that I could use the $250 for better things). 

If you want a true Ethical Hacking Class with hands on labs etc... check out OSCP cert.  Now that is challenging.  And for $750 with exam and extended lab access it's a great value.  Those classes have been full for as far as I remember.

Also don't forget another important resource.  The Laura Chappell Master Library.  I purchased it for $999 and it's worth 10 times as much.

Just my 2 cents...

Also, I think that all members would agree with me, passing an exam taking a course is only the beginning.  It's what you do with it that makes you stand out.  Do your own research and keep up with the technology.  Read, Read and read and do your own testing.  Forums like these are full of knowledge.

I think that I spoke to much....
Take Care,
chuck378

Getting my CEH got me my current job. It was a great entry into the security world. Does that mean you can turn me loose on someone's network? No, but I do have the basic knowledge for building on. As with any cert, there are two sides to the coin. Weigh your options and go for the cert you want. Where I work, every one in this office has the CEH and there are quite a few others thrown in for good measure.

That is very hard to believe. Attend a security conference or a monthly ISSA meeting and ask members there if they have at least heard of the CEH. I'd be incredibly surprised if they say no.

How old are your colleagues? People that are (and have been) set in their ways and are comfortable where they are at don't typically pay as much attention to new certifications. I'd expect that they haven't heard of OSCP or GPEN either.