Certified Ethical Hacker (CEH)

The Certified Ethical Hacker (CEH) course trains professionals to think like attackers to identify and fix security vulnerabilities. It covers the five phases of ethical hacking: Reconnaissance, Gaining Access, Enumeration, Maintaining Access, and Covering Tracks. Participants practice real-world attacks and learn defensive countermeasures to strengthen systems. The curriculum includes web, mobile, wireless, IoT, cloud security, social engineering, and malware fundamentals. By the end, learners can conduct authorized penetration tests, interpret findings, and recommend effective security improvements.

  • 4.9/5.0
  • 1936 Enrolled
  • Last updated Jun 16, 2026
Book a Seat

Course Overview

  • The Certified Ethical Hacker (CEH) program is one of the world’s most recognized and respected cybersecurity certifications. It provides professionals with a deep understanding of how to identify, analyze, and exploit vulnerabilities in systems — the same way a malicious hacker would — but in a lawful, legitimate, and controlled manner.
  • The CEH certification validates an individual’s skills in the specific discipline of ethical hacking from a vendor-neutral perspective, ensuring that participants can apply their knowledge to a wide range of technologies, platforms, and environments.
  • Through this comprehensive training, participants gain hands-on experience using the latest hacking tools, attack vectors, and methodologies used by real-world cybercriminals. They will learn to think like a hacker to better defend systems, networks, and applications against evolving cyber threats.
  • This course covers the five key phases of ethical hacking — Reconnaissance, Scanning, Gaining Access, Maintaining Access, and Covering Tracks — providing a structured approach to uncover and secure vulnerabilities in any organization’s digital infrastructure.

By the end of the CEH program, learners will be able to:

  • Understand and analyze different types of cyberattacks, threats, and vulnerabilities.
  • Master the techniques of footprinting, enumeration, and network scanning.
  • Perform penetration testing and exploit analysis in a safe environment.
  • Identify weaknesses in operating systems, network devices, web applications, and databases.
  • Implement strong countermeasures and defensive mechanisms to protect against malicious attacks.
  • Use ethical hacking methodologies to enhance an organization’s overall security posture.
  • The CEH certification is ideal for security officers, auditors, network administrators, IT professionals, and anyone responsible for safeguarding information systems. It also serves as a foundational step for those aspiring to advanced cybersecurity roles such as Penetration Tester, Security Analyst, or Cybersecurity Consultant.
  • With cyber threats growing in sophistication, the CEH certification empowers professionals to proactively protect digital assets by thinking like adversaries — making them an invaluable asset to any organization’s security team.

Course Outlines

  • Introduction to Ethical Hacking
    Learn the fundamentals of ethical hacking, its legal implications, professional ethics, and the phases of a cyberattack. Understand hacker types, motivations, and the importance of penetration testing in cybersecurity.
  • Footprinting and Reconnaissance
    Explore methods for gathering intelligence about targets using passive and active reconnaissance. Learn techniques such as WHOIS lookups, DNS interrogation, social media profiling, and open-source intelligence (OSINT) gathering.
  • Scanning Networks
    Understand how to identify live hosts, open ports, and running services using network scanning tools. Learn about different scanning types such as TCP connect scans, stealth scans, and vulnerability scanning.
  • Enumeration
    Learn how to extract detailed information from systems, including user names, group names, shares, and services. Study NetBIOS, SNMP, LDAP, and NTP enumeration techniques.
  • Vulnerability Analysis
    Study how to identify, classify, and assess vulnerabilities in systems and applications using automated tools and manual methods. Learn to prioritize risks and generate vulnerability reports.
  • System Hacking
    Dive into the core of hacking—gaining and maintaining access. Learn about password cracking, privilege escalation, covering tracks, and creating backdoors.
  • Malware Threats
    Understand types of malware such as viruses, worms, Trojans, and ransomware. Learn how attackers deploy malware and how to detect, analyze, and defend against them.
  • Sniffing
    Discover how network traffic can be intercepted and analyzed. Learn packet sniffing techniques, ARP poisoning, MAC flooding, and countermeasures to protect against sniffing attacks.
  • Social Engineering
    Study human-based attack techniques including phishing, baiting, pretexting, and impersonation. Learn how to identify and defend against manipulation-based threats.
  • Denial-of-Service (DoS) Attacks
    Learn how attackers overload or disrupt systems and networks. Understand the difference between DoS and DDoS attacks, attack tools, and mitigation techniques.
  • Session Hijacking
    Explore how attackers take over active sessions using methods like TCP hijacking and cookie stealing. Learn detection and prevention strategies.
  • Evading IDS, Firewalls, and Honeypots
    Learn advanced techniques to bypass Intrusion Detection Systems, firewalls, and honeypots used to trap hackers. Study encryption, tunneling, and fragmentation-based evasion methods.
  • Hacking Web Servers
    Understand how to identify and exploit web server vulnerabilities. Learn about configuration flaws, directory traversal, and privilege escalation on server environments.
  • Hacking Web Applications
    Study the most common web application attacks such as XSS, command injection, and session management flaws. Learn secure coding practices and defense mechanisms.
  • SQL Injection
    Dive deep into SQL injection vulnerabilities and learn how attackers manipulate databases. Practice detecting and mitigating SQL injection attacks in web applications.
  • Hacking Wireless Networks
    Explore wireless security protocols (WEP, WPA, WPA2, WPA3), and understand attacks like evil twin, deauthentication, and cracking wireless encryption keys.
  • Hacking Mobile Platforms
    Learn how mobile operating systems (Android and iOS) are targeted. Understand mobile malware, app vulnerabilities, and secure mobile device management practices.
  • IoT Hacking
    Study Internet of Things (IoT) architectures, communication protocols, and common vulnerabilities. Learn how to secure IoT ecosystems from attacks.
  • Cloud Computing
    Explore cloud service models (IaaS, PaaS, SaaS) and cloud-specific threats. Learn about identity management, virtualization risks, and secure cloud deployment practices.
  • Cryptography
    Understand encryption principles, algorithms, and hashing. Learn how cryptography protects data confidentiality and integrity, and explore how attackers attempt to break encryption.

Course Objectives

By the end of this course, participants will be able to:

  • Establish and uphold minimum standards and best practices for information security professionals specializing in ethical hacking.
  • Understand and apply the principles, methodologies, and tools used by ethical hackers to identify and mitigate security threats.
  • Demonstrate that accredited professionals meet or exceed recognized industry standards in ethical hacking and cybersecurity.
  • Promote ethical hacking as a respected and regulated profession, emphasizing integrity, responsibility, and continuous learning.
  • Conduct comprehensive vulnerability assessments to detect weaknesses in systems, networks, and applications before malicious hackers can exploit them.
  • Implement and manage data encryption techniques to protect sensitive information and maintain data confidentiality, integrity, and availability.
  • Analyze and exploit web application vulnerabilities, including injection flaws, broken authentication, and insecure configurations, and learn how to remediate them.
  • Perform penetration testing and risk analysis on a variety of platforms to evaluate and strengthen security postures.
  • Explore and test the security of IoT (Internet of Things) devices and ecosystems, identifying potential entry points and applying secure configurations.
  • Gain a deep understanding of malware threats, network attacks, social engineering techniques, and countermeasures used in real-world scenarios.
  • Develop the skills to report, document, and communicate ethical hacking findings effectively to technical and non-technical stakeholders.
  • Foster a mindset of proactive defense and continuous improvement in cybersecurity operations.

Course Prerequisites

  • There are no formal prerequisites required to enroll in the CEH course. However, having a basic understanding of networking concepts, operating systems (especially Windows and Linux), and general IT knowledge will help participants grasp the course material more effectively.

It is recommended, though not mandatory, that learners have:

  • At least 6 months of experience in information security or networking.
  • Familiarity with TCP/IP protocols, network devices, and security fundamentals.
  • Basic knowledge of programming or scripting languages such as Python, C, or JavaScript (optional but helpful).
  • This course is designed to accommodate both beginners who wish to enter the cybersecurity field and experienced IT professionals seeking to enhance their skills in ethical hacking and penetration testing.
Please check your input and try again.

Course Schedule

Date Days Left Training Location

Course Exam Info

  • The Certified Ethical Hacker (CEH) certification is one of the most globally recognized credentials in the field of cybersecurity, focusing on offensive security and penetration testing fundamentals. It validates an individual’s ability to identify, assess, and defend against potential cyber threats by applying ethical hacking methodologies in a lawful and structured manner.

Focus Area

  • The CEH certification emphasizes offensive security skills and penetration testing techniques while maintaining a strong defensive perspective. Candidates are trained to think like malicious hackers but act ethically to strengthen system security. Through hands-on labs and simulated cyber environments, learners gain expertise in discovering, analyzing, and exploiting vulnerabilities in real-world systems — always within a legal framework.

The curriculum encompasses a wide range of topics, including:

  • Footprinting and Reconnaissance – Gathering preliminary information about target systems.
  • Scanning Networks – Identifying live systems, open ports, and services.
  • Enumeration – Extracting system details such as users, shares, and network resources.
  • System Hacking – Exploiting and gaining unauthorized access to systems.
  • Malware Threats – Understanding and analyzing malicious software and countermeasures.
  • Sniffing and Packet Analysis – Capturing and interpreting network traffic.
  • Social Engineering – Manipulating individuals to gain access or information.
  • Web Application Hacking – Attacking and securing web-based applications.
  • SQL Injection – Exploiting database-driven applications through injection flaws.
  • Wireless Network Hacking, IoT Hacking, Cloud Computing, and Cryptography – Understanding modern attack surfaces and defense strategies.

Exam Structure

The CEH exam is designed to test both theoretical knowledge and practical understanding of ethical hacking concepts:

  • Format: 125 multiple-choice questions
  • Duration: 4 hours
  • Exam Mode: Proctored (online via ECC Exam Centre or through Pearson VUE testing centers)
  • Version: Currently based on CEH v12 curriculum
  • Passing Score: Typically ranges between 60% and 85%, depending on the specific exam form and question difficulty (as EC-Council uses multiple question banks).
  • The exam covers a comprehensive range of domains, including network security, system hacking, malware, cryptography, web applications, and penetration testing methodologies.

Eligibility Requirements

To be eligible for the CEH certification exam, candidates must meet one of the following conditions:

  • Attend Official CEH Training: Through EC-Council’s Accredited Training Centers (ATCs) or approved online learning platforms.
  • Work Experience: Possess a minimum of two years of professional experience in the field of information security and submit an eligibility application for approval by EC-Council.
  • This ensures that all participants have a fundamental understanding of IT and security principles before attempting the certification.

Certification and Career Progression

After achieving the CEH credential, professionals can advance their expertise by pursuing:

  • CEH Practical: A 6-hour hands-on lab-based assessment that tests practical penetration testing skills. Passing both the theoretical CEH exam and the CEH Practical grants the prestigious CEH Master designation.
  • Career Roles: CEH-certified professionals are well-positioned for roles such as Penetration Tester, Security Analyst, Cybersecurity Consultant, Network Security Engineer, or Red Team Specialist.
  • Recognition: CEH is recognized by the U.S. Department of Defense (DoD 8570/8140) and is a preferred qualification for cybersecurity roles in both government and private sectors.
  • Recertification: The CEH credential is valid for three years and must be renewed by earning EC-Council Continuing Education (ECE) credits through ongoing professional development, training, or conference participation.
Our Student Reviews

4.9

Excellent

CM
Connor McGregor

iExperts has always said that the best way to defend is to think like an attacker, and I finally understand why. Learning ethical hacking opened my eyes to how easily systems can be breached—it’s both terrifying and exciting at the same time!

DA
Daniel Anderson

Thank you for the training you provided. It was full of information that is useful and you were very good at delivering it. Hope to keep in touch,

MP
Michael Patel

I really did enjoy the course, thanks for making it entertaining. I will give myself a few months to study the information before attempting the exam to ensure I pass.

Load more

This course includes

  • Duration40 h
  • VendorEC-Council
  • CategoryCyber Security
  • CertificateYes

Course Profile

Course Quiz

Test your knowledge with our course quiz! Answer a series of questions related to Certified Ethical Hacker (CEH).

Similar Courses

Computer Hacking Forensics Investigator (CHFI)
Computer Hacking Forensics Investigator (CHFI)

The CHFI certification is a vendor-neutral program that provides a solid foundation in digital forensics and cyber investigation techniques. It covers evidence acquisition, preservation, analysis, and presentation in a legally admissible manner. Participants gain hands-on experience with forensic tools across networks, mobile devices, cloud environments, and malware analysis. The course aligns with standards like ISO 27001, PCI DSS, SOX, and HIPAA, ensuring proper evidence handling and compliance. Graduates develop the skills to work as digital forensic specialists in law enforcement, corporate security, and cybersecurity roles.

  • 40 h 4.9 (2435)
Certified Network Defender (CND)
Certified Network Defender (CND)

The Certified Network Defender (CND) program provides hands-on, vendor-neutral training focused on protecting, detecting, responding to, and recovering from network security incidents. It covers core network defense concepts, threat detection, risk assessment, and incident response. Participants learn traffic analysis, firewall/VPN configuration, IDS/IPS management, and vulnerability assessment. The course emphasizes defense-in-depth strategies, secure network architecture, and effective security policies. Graduates are equipped to proactively safeguard networks, reduce risks, and maintain business continuity.

  • 40 h 4.8 (1879)
EC-Council Certified SOC Analyst (CSA)
EC-Council Certified SOC Analyst (CSA)

The EC-Council Certified SOC Analyst (CSA) course is an entry-level program designed to prepare aspiring SOC professionals with essential skills in monitoring, detecting, and responding to security incidents. It provides hands-on experience with SIEM tools, SOC processes, log analysis, and threat detection techniques. Participants learn to identify IOCs, analyze attacks, and apply threat intelligence to strengthen defenses. The course builds both technical and analytical capabilities required for real-world SOC environments. Graduates are equipped for roles such as SOC analyst, incident responder, and threat hunter.

  • 24 h 4.8 (631)
Certified Secure Computer User
Certified Secure Computer User

The Certified Secure Computer User (CSCU) program teaches essential skills to protect personal and professional digital assets. Students learn about common cyber threats, including malware, phishing, ransomware, and social engineering. The course covers safe online behavior, password management, secure browsing, and data backup strategies. Participants gain practical knowledge to prevent, detect, and respond to security incidents effectively. CSCU certification empowers individuals to maintain a safer digital environment at home, school, and work.

  • 16 h 4.9 (2356)
Certified Threat Intelligence Analyst (CTIA)
Certified Threat Intelligence Analyst (CTIA)

The Certified Threat Intelligence Analyst (CTIA) program equips cybersecurity professionals with skills to identify, analyze, and mitigate internal and external threats. It bridges cybersecurity operations with strategic threat intelligence, covering the full Threat Intelligence Lifecycle. Participants learn intelligence planning, data collection, analysis, and reporting, using OSINT and real-world case studies. The course emphasizes analytical, investigative, and strategic skills that set threat intelligence analysts apart. Graduates gain the expertise to anticipate cyber threats and enhance organizational resilience.

  • 24 h 4.9 (1949)

You may also like

Check out most 🔥 courses in the market

Dora Lead Manager
PECB
Cyber SecurityBusiness Management
Dora Lead Manager

The DORA (Digital Operational Resilience Act) Lead Manager course equips senior professionals with the skills and knowledge needed to oversee, manage, and ensure compliance with the DORA framework in financial institutions and related ICT service providers. This program covers operational resilience strategies, ICT risk management, incident handling, reporting requirements, and oversight of third-party providers, enabling participants to lead their organizations in meeting the EU’s regulatory expectations effectively.

4.9

(2000)
40 h
ISO 9001 Lead Implementer
PECB
Business Management
ISO 9001 Lead Implementer

The ISO 9001 Lead Implementer training course equips participants with the necessary knowledge and skills to support an organization in establishing, implementing, managing, and maintaining a Quality Management System (QMS) based on ISO 9001:2015. This course provides a practical methodology for the implementation process by applying best practices and aligning with international quality management standards. By the end of the course, participants will gain hands-on expertise in leading implementation projects, managing teams, and preparing organizations for certification audits.

4.8

(3000)
40 h
ISO 42001 AI lead implementer
PECB
Cyber Security
ISO 42001 AI lead implementer

The ISO/IEC 42001 Lead Auditor course equips professionals with the knowledge and skills to conduct and lead Artificial Intelligence Management System (AIMS) audits in compliance with ISO/IEC 42001. Participants will learn to apply internationally recognized audit principles, manage audit programs, and ensure AI governance aligns with ethical, legal, and organizational requirements. The course prepares attendees for certification as an ISO/IEC 42001 Lead Auditor, empowering them to assess AI systems for compliance, risk management, and continuous improvement.

4.9

(2000)
40 h
AI For End User
iExperts
AI
AI For End User

This course is a practical, tool-agnostic training program designed for professionals who want to leverage artificial intelligence in their daily work without needing a background in data science or programming. Participants will learn how AI interprets and processes human language, how to interact with AI tools effectively, and how to integrate AI into everyday tasks to enhance productivity, decision-making, and creativity.

4.9

(2457)
35 h
AI For End User Plus
iExperts
AI
AI For End User Plus

This advanced lesson builds on foundational AI knowledge to help users unlock the full potential of AI tools in personal and professional settings. Learners will explore more powerful features of AI platforms, gain hands-on experience with smart assistants, content generators, and automation tools, and learn strategies for integrating AI into workflows. The course also emphasizes data awareness, ethical use, and decision-making with AI support—empowering users to use AI responsibly and effectively in real-world scenarios.

4.9

(1953)
40 h
cookie

We use cookies to enhance your experience on our website. By continuing to browse, you consent to our use of cookies. To learn more, please refer to our Cookie Policy