The exam consisted of 150 questions and you have a 4 hour time limit, which I actually took a while, three and a half hours to complete. The nice thing about the test is that you can go back and check your answers, or those you marked during the exam. I used the extra 30minutes for that.
Here is how I passed, or the materials that I used.
- Read Kimberly Graves 2010 CEH book twice (once two days before exam).
- Wen through all the practice tests included in the book until all information was second hand.
- Used Shon Harris’ CEH flash cards daily certflashcardsonline.com
- Used and memorized most of the commands/ switches from the NMAP Cookbook.
- Installed fresh installs of Linux distributions and knew at least the basic commands.
- Installed and learned how to configure SNORT, not in depth, but working on it still.
- eLearnSecurity’s course I’m going through (Armando’s section) helped a lot.
- A lot just was previous knowledge that helped from my CCNA/P studies (ports etc.)
I studied for a month and a half immediately after passing my CCNP Switch exam. However, don’t use my time frame to base anything on, because I literally studied 10hrs a day everyday with no outside life… So, for those who don’t want to be a hermit geek, maybe 2 – 3 months, depending on your knowledge level..
I know the CEH gets a lot of flack, but I can honestly say I learned a heck of a lot from preparing for the exam. The thing is the above mentioned book is short and not great, but if you actually go on your own and configure/ learn to understand the output from and IDS such as SNORT, linux, NMAP, NetCat… You’ll be fine, IMHO.
So what’s next for me… Well I thought about it and I’m so into the security that I didn’t want to get back into finishing my other 2/3 of my CCNP at first, but remembered, hey I’m still going through eLearn’s course to get my ePPT. So I’m going to balance both, get my CCNP out of the way, then worry about what vendor specific security certification to get next. I have the SSCP in mind, since I have all the material for it, but wouldn’t mind getting my ECSA/LPT either.