Certified Ethical Hacker (CEH ) is a qualification obtained by demonstrating knowledge of assessing the security of computer systems by looking for weaknesses and vulnerabilities in target systems, using the same knowledge and tools as a malicious hacker, but in a lawful and legitimate manner to assess the security posture of a target system. This knowledge is assessed by answering multiple-choice questions regarding various ethical hacking techniques and tools. The code for the CEH exam is 312-50. This certification has now been made a baseline with a progression to the CEH (Practical), launched in March 2018, a test of penetration testing skills in a lab environment where the candidate must demonstrate the ability to apply techniques and use penetration testing tools to compromise various simulated systems within a virtual environment.
Ethical Hackers are employed by organizations to penetrate networks and computer systems with the purpose of finding and fixing security vulnerabilities.
Certification is achieved by taking the CEH examination after having either attended training at an Accredited Training Center (ATC) or completed through EC-Council’s learning portal, iClass. If a candidate opts to self-study, an application must be filled out and proof submitted of two years of relevant information security work experience. Those without the required two years of information security-related work experience can request consideration of educational background. The current version of the CEH is V11 which uses the EC-Council’s exam code 312-50, as the earlier versions did. The cost of CEH V11 is $1199. Although the new version V11 has recently been launched, this exam has 125 multiple-choice questions, with a 4-hour time limit, The EC-Council and various ATCs (Accredited Training Center) administer the CEH examination.
Members holding the CEH/CNDA designation (as well as other EC-Council certifications) must seek re-certification under this program every three years, for a minimum of 120 credits.