Exam 312-50 Details:
Time: 240 Minutes
Passing Score: 70%
Format: Multiple choice
Other Requirements: 2 Years Exp, Must sign an Ethics Agreement.
Renewal: Every 3 years
Editors’ Quick Thoughts
Updated October 2011: This cert was hot. It still has the most certififed individuals of any ethical hacking credential, but I think that has much more to do with the name and marketing. We believe that the decision to include every tool known to man, past & present is a mistake. This approach is intentional by EC-Council as they told me themselves that they want encyclopedic course materials. In my opinion, this puts the CEH behind the curve as most other courses in this field now use the best-of-breed approach. This allows the competitors to spend more time on the proper usage of the top 25 – 50 tools instead of bombarding the students with tools that have never been heavily used by professionals if at all. In a maturing field, I think the CEH may still have a place for absolute beginners, but a pen tester you will not be after passing this exam. There were great improvements to v7 this year including a great new look, but the Achilles Heal is still trying to cram huge volumes of unneeded information into a one-week course and claiming that the rest is there for either self-study or reference.
There are some training providers that have taken the base CEH course and added to it to make a more coherent pen testing course. It is also appropriate to mention that the course varies greatly depneding on the instructor. With the right instructor, a CEH course may very well be worth the time and money. With an instructor that may simply go with the provided slides in an attempt to only prep the student to pass the exam, you may come out dissappointed.
From the Horse’s Mouth (EC-Council’s Web Site Content):
CEH by EC-Council: Certified Ethical Hacker and Penetration Testing
To beat a hacker, you need to think like one! This is exactly what this class will teach you. It is the pinnacle of the most desired information security training program any information security professional will ever want to be in.
The definition of an Ethical Hacker is very similar to a Penetration Tester. The Ethical Hacker is an individual who is usually employed with the organization and who can be trusted to undertake an attempt to penetrate networks and/or computer systems using the same methods as a Hacker. Hacking is a felony in the United States and most other countries. When it is done by request and under a contract between an Ethical Hacker and an organization, it is legal. The most important point is that an Ethical Hacker has authorization to probe the target.
This class will immerse the students into a hands-on environment where they will be shown how to conduct ethical hacking. They will be exposed to an entirely different way of achieving optimal information security posture in their organization; by hacking it! They will scan, test, hack and secure their own systems. The lab intensive environment gives each student in-depth knowledge and practical experience with the current essential security systems. Students will begin by understanding how perimeter defenses work and then be lead into scanning and attacking their own networks, no real network is harmed. Students then learn how intruders escalate privileges and what steps can be taken to secure a system. Students will also learn about Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows, Virus Creation and others.
When a student leaves this intensive 5 day class they will have hands on understanding and experience in Ethical Hacking.
More from EC-Council.
Related News Feed
Category: Ethical Hacking