EC-Council

CEH

Certified Ethical Hacker (CEH v13)

A widely recognized ethical hacking certification covering reconnaissance, system hacking, and attack techniques across networks, web apps, cloud, and IoT. Accepted for US DoD 8140/8570 baseline requirements.

4 hours

What's on the exam

CEH Exam Blueprint v5.0 (CEH v13)

Information Security and Ethical Hacking Overview

Hacking concepts and phases · CIA triad and security controls · Cyber kill chain · Ethical hacking methodology · Laws, standards, and compliance

Reconnaissance Techniques

17%

Footprinting and OSINT · Network and host scanning · Enumeration techniques · Reconnaissance tools · Countermeasures

System Hacking Phases and Attack Techniques

15%

Vulnerability analysis · Gaining access and privilege escalation · Malware threats · Maintaining access and covering tracks · Password attacks

Network and Perimeter Hacking

24%

Sniffing techniques · Social engineering · Denial-of-service attacks · Session hijacking · Evading IDS, firewalls, and honeypots

Web Application Hacking

14%

Web server attacks · Web application attacks · SQL injection · API and webhook security · Web countermeasures

Wireless Network Hacking

Wireless encryption standards · Wireless threats and attacks · Wireless hacking tools · Bluetooth attacks · Wireless security countermeasures

Mobile Platform, IoT, and OT Hacking

10%

Mobile attack vectors · Android and iOS security · IoT threats and attacks · OT/ICS security · Mobile and IoT countermeasures

Cloud Computing

Cloud computing concepts · Container and serverless security · Cloud attacks · Cloud security tools · Cloud countermeasures

Cryptography

Encryption algorithms · Public key infrastructure · Cryptographic tools · Cryptanalysis and attacks · Disk and email encryption

Frequently asked questions

How much does the CEH cost?

Fees vary. Exam voucher pricing varies (roughly US$950–$1,199) and often bundles training; a US$100 eligibility application fee applies without official training. Confirm with EC-Council..

How long is the CEH and how many questions does it have?

125 items — 4 hours.

What do you need to pass the CEH?

Cut score varies by exam form, typically 60–85%.

Can you retake the CEH?

Retakes permitted; waiting periods increase with successive attempts.

What is the best way to study for the CEH?

Study the official blueprint, not random material: the exam is weighted by domain (Information Security and Ethical Hacking Overview 6%, Reconnaissance Techniques 17%, System Hacking Phases and Attack Techniques 15%, Network and Perimeter Hacking 24%, Web Application Hacking 14%, Wireless Network Hacking 5%, Mobile Platform, IoT, and OT Hacking 10%, Cloud Computing 5%, Cryptography 5%). Spaced-repetition flashcards built domain-by-domain against that blueprint are the most time-efficient way to cover everything the exam tests.

Program in development

We're building a blueprint-complete program for this exam. Meanwhile, explore live programs across 11 exam.

Explore programs →

At a glance

Format: Multiple-choice knowledge exam (optional separate hands-on Practical exam)
Questions: 125 items
Duration: 4 hours
Passing: Cut score varies by exam form, typically 60–85%
Eligibility: Official EC-Council training, or 2 years of information security experience with an approved eligibility application
Validity / renewal: 3 years — maintained via EC-Council Continuing Education (ECE) credits
Where you take it: Pearson VUE or EC-Council ECC exam center / remote proctoring
Retake policy: Retakes permitted; waiting periods increase with successive attempts

Official sources

EC-Council Certified Ethical Hacker (CEH) ↗

Fees, policies, and blueprints change — always confirm details with the official source before registering.