Hi awesec,

let me give you a brief story of mine, back in 2007, I was lucky to get my company to sponsor me the CEH course version 5.0. Fees was like USD1000, you get the following:

1) 5 days of training (9a.m-5p.m) - lunch on your own
2) 1 box of 5 thick manuals which are poorly written, even the print-screen of is not up to par or clear (they are very blurred)
3) a CEH trainer which tries his best to explain everything to us
4) practically skipped all theory based topics like physical security etc.
5) lab testing - a Windows 2000 server (un-patched), so you can try to get in using metaspoilt, hacking thru netbios etc.
6) completely ignore how to hack Linux boxes (just skipped), asked us to play around with the BackTrack Live-CD.
7) A set of download CDs on the tools available from the Internet seperated by chapters (Windows, Linux, Wireless Hacking, Web Server etc).
a voucher for the exam in any of the Prometric training center.

Again, I procrastinated up to until early this year, to study and take the exam (as it expired in Dec 2008), I renewed the voucher and took the exam in April 2009 and passed. To sum it all, I didn't rely on the official training materials (never read it), as I know I'd be wasting time. So I brought the Official Review Guide, CEH ExamPrep and Exam Cram 2.

I can't say, I'm a 100% hacker or claim to be one, there's so many things that I'm still learning. All i know that in this industry of Info Sec, you need to have paper credentials to show that you can do the work too. (whether you can do it or not later, well, thru interviews, the people will know whether you're B/S or you can really do it.)

I've read the two links you've posted before, some of the posting were back since 2006. I'm not pro-EC council or something, I guess from the way they started it off, quality controls are somewhat lacking. I'm not sure about the latest official training materials are any good or not for Version 6.

If you can do self study, that would be at least save all your hard-earned money. If you do really want to go for the training/workshop, I suggest you visit their facilities and take a look at the materials that will be given to you upon signing up the course. that way you get a feel whether the training is worth it etc. (check the trainer CVs' too)

Btw, we don't get SANs training here in Asia, otherwise, would have got more options.

I'm doing CISSP self study and aim to take the exam in Dec 09 this year.

Good luck in your quest.

kennut

Thanks for your input, kennut.

I too think that the instructor is very important and one of the essentials needed to suceed. Here it doesn't matter which course it is, e.g. CEH, CISSP or one of SANS - without a good instructor one won't learn much and probably will have it hard to pass any exam.

Although the discussion of the supplied link was back in 06/ 07, it left back something "bad" for me after I read it. I don't expect to become a professional pentester just with this certificate, but I see it as some sort of key which may unlock some doors for me. Considering the fact that CEH is not very recognized in Europe and that it is quite expensive for this (at least for me), I still have some doubts if I should actually go for it.

Several reviews I read, including yours, kennut, are often double edged which doesn't easy the decision for me. Some of the claims against EC-Council seem legitimate to me, however, many of them are only pushing the anti EC-Council campaign I guess and can't therefore be taken seriously.

A similar thread I found on EH-Net too but actually missed before starting this one, can be found here.

I am aware of the fact that it is hardly possible to fit everyones need and that not always everybody will be satisfied with what one gets.

Thanks for your reply too, dale.
I too think that certs are not everything but can come in handy. I experienced that people with little knowledge and a cert may be invited to a job while some with more knowledge but without a cert may not. Again it is double edged.

I totally degree. I have been there many years ago with Microsoft Certs, doing the exams etc just to help with getting a job interview.

Its a crazy world Good old agency verification checks.

awesec,

I think the exam cost USD250 now, couple with the books add another US100 if you get it via Amazon and if you got extra dollar get the pass4sure.com test software, that should be around USD450++ for it.

1) get the test voucher
2) get the books
3) give yourself a few months, read all the books, and do the pass4sure test software
4) schedule a test date, and go for it

life is so many choices to make, like Nike slogan "Just Do IT".

 

Here are a few links:

8570 announcement

Air Force Operations Center

CNSS

Some of my exp.