ketchup how's it going hope you're enjoying your classes/briefings. The CPT and CEPT are a bit more complicated than the OSCP is with only the NOP being the most difficult (http://www.immunitysec.com/services-cnop.shtml) in terms of "leetness." However, the NOP also is in a class of its own as is the OPST (http://www.isecom.org/projects/opst.shtml).

If I had to rank them I would probably label them as follows (remember these are pentesting certs now, not security managers, auditors or intro level C|EH certs):

OSCP
GPEN
CPT
OPST
CEPT
NOP

Notice the LPT isn't on here? This is not because I think it's worthless, its because I believe the content of the ECSA + CEH to get the LPT is the wrong approach. I understand the need to introduce tools and certain methods however, I believe that EC-Council's structure isn't well... Structured properly. They have a great "framework" however, I believe they've been focusing too much on marketing and not enough on structure. AGAIN, this is not to say the LPT is worthless, this is just to say it's a bit too scattered for my taste.

It's probably unfair for me to list certs I don't have (GPEN, NOP) but judging by everything I've read, a little bit of experience with the organizations, I placed GPEN and NOP in those positions. For example, I don't know if it still holds true, but SANS tends to have "open book" exams. I completely disagree with this type of exam, period. NOP, well I know the authors and their capabilities and the authors are at the top of the "pentesting" food chain so I know the content is likely a PITA.

I might shoot for the OCSE as soon as I 1) get results from ISACA some time in the next two weeks or 2) I decide against the CREA/GREM (I'm still up in arms about these). The OCSE looks like fun however, 48 hours with a family + work + studies + xbox (yup, I have to free my mind with mindless stupidity a-la MW2) = difficult

Sil, the NOP cert sounds a bit too constricting.  Am I understanding correctly that the entire test is discovering a BOF and exploiting it within 40 minutes?   That sounds a bit limited and geared towards vulnerability research.  Still, it is pretty hard core.   I really need to brush up on writing BOF exploits.  My knowledge is so outdated and useless.  I wish there was more time in the day.

The briefings were great.  I missed the ATM machine one, and opted for another briefing.   That was a mistake    I especially loved the Samy Kamkar one.  He is one funny dude, great content too.   I am working on a review of the training class, but in short, it was very enjoyable. 

nothing about EC Council, I was given the opportunity to take it and paid by the company for free! took CEH v5 workshop, well, the instructor is OK, but he did skipped hands on for Linux part etc. rest are very theory based, and of course, the fun part was unpatched Windows 2000 and how you use metaspoilt to get in. that was 2007.

I'm not sure how their coursework or materials fare now, their previous print-screen books x 5 volumes was a mess, so i really skipped them when preparing for the exam.

so back to the topic, yes, Ec-council marketing is damn good to be fact. better than others, even the job posting are asking for CEH credentials. No big issue in Asian countries, as OSCP, GPEN, CPT, OPST, CEPT, NOP are not popular here!

I hold CISA and CISM (in waiting for certification), so CEH when ppl asked me why I took it, I told them I did it for "fun", to learn thing ethical hacking stuffs, not something that can find a me high pay job.