Earning the Certified Ethical Hacker (CEH) credential is one of the most effective ways to launch or advance a career in cybersecurity. But the path from deciding to pursue CEH to holding the certificate in your hands involves several key decisions — choosing the right training track, understanding eligibility requirements, preparing effectively for the exam, and knowing how each level of the certification builds toward CEH Master status.
This guide walks you through every stage of the CEH certification process, from initial prerequisites to the final CEH Master designation. Whether you are a complete beginner mapping out your first cybersecurity certification or an experienced IT professional adding offensive security skills to your portfolio, this roadmap will help you plan your journey with confidence.
Step 1: Understand the Prerequisites
EC-Council offers two pathways to CEH exam eligibility. Understanding which path applies to you is the first critical decision in your certification journey.
Path A: Official EC-Council Training
If you attend an official EC-Council training program — either through an Authorized Training Center (ATC), via iClass (live online), or through the self-paced iLearn platform — you are automatically eligible to sit for the CEH exam. No additional application or work experience documentation is required. This is the fastest and most straightforward path.
Path B: Self-Study with Experience
If you choose to self-study without official EC-Council training, you must demonstrate at least two years of professional experience in the information security domain. You will need to submit an eligibility application to EC-Council, which includes your work history and a non-refundable application fee. EC-Council reviews each application individually, and approval is not guaranteed.
Recommendation
For most candidates, Path A (official training) is the better choice. It removes the application uncertainty, provides structured learning materials aligned to the exam blueprint, and gives you access to hands-on lab environments that are essential for understanding real-world attack techniques. The CEH v13 Master package includes the eCourseware, iLabs access, exam voucher, and one free retake — covering everything you need in a single purchase.
Step 2: Choose Your Training Format
EC-Council delivers CEH training through several formats. Each has distinct advantages depending on your learning style, schedule, and budget.
Instructor-Led Training (ILT)
Live classroom training delivered by an EC-Council Certified Instructor over 5 consecutive days. Ideal for learners who thrive in structured environments with real-time Q&A and peer interaction. Available at Authorized Training Centers worldwide.
Live Online (iClass)
The same instructor-led experience delivered remotely via video conferencing. You attend live sessions on a fixed schedule but from any location. Combines the benefits of structured instruction with the flexibility of remote learning.
Self-Paced (iLearn)
Pre-recorded video lectures with full eCourseware and lab access. Study on your own timeline with up to 12 months of access. Best for experienced professionals who prefer to control their learning pace and schedule.
CEH Master Package
The comprehensive all-in-one bundle that includes eCourseware, iLabs, the CEH Standard exam voucher, and one retake. This is the most cost-effective way to pursue the full CEH certification path from Standard through Master.
Step 3: Master the 20 Exam Domains
The CEH v13 exam blueprint spans 20 modules covering the entire ethical hacking lifecycle. Your study plan should ensure you have working knowledge across every domain — the exam draws questions from all of them.
$ cat /ceh-v13/exam-blueprint.txt
→ Modules 01–05: Recon, Scanning, Enumeration, Vuln Analysis
→ Modules 06–08: System Hacking, Malware, Sniffing
→ Modules 09–12: Social Eng, DoS, Session Hijacking, IDS Evasion
→ Modules 13–16: Web Servers, Web Apps, SQLi, Wireless
→ Modules 17–20: Mobile, IoT, Cloud Security, Cryptography
$ echo "Total questions: 125 | Time: 4 hours"
→ Passing score: dynamically set (~60-85%)
$ _
Focus your heaviest study effort on the domains with the highest exam weighting — typically System Hacking, Web Application Attacks, and Network Scanning/Enumeration. However, do not neglect less-weighted areas like IoT, Cloud, and Cryptography, as exam questions are distributed across all 20 modules.
Step 4: Build Hands-On Skills
Theoretical knowledge alone will not carry you through the CEH exam — and it certainly will not prepare you for real-world security work. The CEH v13 curriculum emphasizes practical skills, and the exam includes scenario-based questions that require you to understand how tools and techniques actually work in practice.
EC-Council iLabs provides a cloud-based cyber range with over 220 hands-on lab exercises mapped directly to the 20 CEH modules. These labs allow you to practice with real tools including Nmap, Metasploit, Burp Suite, Wireshark, Hydra, SQLmap, and many others in a legal, sandboxed environment.
Beyond iLabs, supplement your practice with:
- Vulnerable VMs — platforms like Metasploitable, DVWA, and HackTheBox provide additional targets for honing exploitation skills
- Home lab environments — set up virtual networks with VirtualBox or VMware to practice scanning, enumeration, and exploitation in isolated environments
- Capture the Flag (CTF) — participate in CTF competitions on platforms like TryHackMe, PicoCTF, or OverTheWire to sharpen problem-solving under pressure
- Network traffic analysis — download PCAP files from public repositories and practice analysis with Wireshark and tcpdump
Step 5: Develop a Study Strategy
A structured study plan dramatically improves your chances of passing on the first attempt. Here is a proven 8–12 week preparation framework:
- Weeks 1–3: Complete the eCourseware modules 1–8. Focus on foundational concepts: reconnaissance, scanning, enumeration, system hacking, and malware. Complete all associated labs.
- Weeks 4–6: Cover modules 9–14 — social engineering through web application hacking. These modules contain some of the most heavily tested material. Spend extra time in labs.
- Weeks 7–9: Finish modules 15–20 — SQL injection through cryptography. Pay close attention to wireless, mobile, IoT, and cloud security, as these represent modern attack surfaces increasingly covered in v13.
- Weeks 10–12: Full review cycle. Take practice exams, identify weak areas, revisit difficult modules, and re-run key labs. Aim for consistent 80%+ scores on practice tests before scheduling the real exam.
Step 6: Pass the CEH Exam
The CEH Standard exam consists of 125 multiple-choice questions delivered over 4 hours. You can take it at a Pearson VUE testing center or through EC-Council's online remote proctoring.
Key exam-day strategies:
- Time management — you have roughly 1.9 minutes per question. Flag difficult questions and return to them after completing easier ones.
- Eliminate wrong answers — most questions have at least one or two clearly incorrect options. Narrowing to two choices significantly improves your odds.
- Think like a hacker — when in doubt, choose the answer that reflects the attacker's methodology. CEH tests your understanding of offensive thinking.
- Watch for tool-specific questions — know the primary use case and syntax for major tools like Nmap, Metasploit, Wireshark, Nikto, Aircrack-ng, and SQLmap.
Step 7: Advance to CEH Master
Passing the CEH Standard exam earns you the Certified Ethical Hacker credential. But if you want to prove hands-on capability, the next step is the CEH Practical exam — and combining both earns you the elite CEH Master designation.
The CEH Master Path
CEH Standard — 125-question multiple-choice exam validating theoretical knowledge across all 20 modules.
CEH Practical — 6-hour hands-on exam in a live cyber range. You must compromise targets, extract data, escalate privileges, and complete challenges using real tools — no multiple choice.
CEH Master — Earned automatically when you hold both CEH Standard and CEH Practical. This is the highest CEH designation and proves both knowledge and execution capability.
Certification Maintenance
CEH certification is valid for three years. To maintain your credential, you must earn 120 EC-Council Continuing Education (ECE) credits over the three-year cycle — averaging 40 credits per year. Credits can be earned through activities such as attending conferences, publishing research, completing training courses, contributing to open-source security projects, and participating in CTF events.
There is also an annual maintenance fee payable to EC-Council. Failing to meet the ECE requirements or pay the maintenance fee will result in your certification becoming inactive. Plan for this ongoing commitment from the start — treat certification maintenance as part of your professional development routine, not an afterthought.
Investment and Return on Value
The cost of CEH certification varies depending on your training path. Self-study candidates face lower upfront costs but must account for the application fee, study materials purchased separately, and the risk of retaking the exam without structured preparation. Official training packages, while carrying a higher price tag, bundle everything together and statistically lead to higher first-attempt pass rates.
Consider the investment in context. CEH-certified professionals in the United States typically command salaries ranging from $95,000 to $130,000+ depending on role, experience, and location. In the Asia-Pacific region, Middle East, and Europe, CEH is equally valued — often required for government, military, and enterprise security positions. The certification pays for itself within the first few months of a salary increase or a role upgrade enabled by holding the credential.
Beyond salary, CEH provides career mobility. It qualifies you for DoD 8570/8140 positions in the United States, meets baseline requirements for security clearance roles, and is recognized by organizations across 145+ countries. Whether you are aiming for a promotion within your current company or positioning yourself for a new role in a different organization or country, CEH provides internationally portable proof of your ethical hacking capabilities.
Common Mistakes to Avoid
Having guided thousands of candidates through the CEH certification process, certain patterns of mistakes consistently emerge. Avoiding these pitfalls will save you time, money, and frustration:
- Skipping hands-on labs — candidates who only study theory struggle with scenario-based exam questions. The lab hours are not optional; they are essential to exam readiness.
- Cramming too fast — trying to cover all 20 modules in 2–3 weeks leads to surface-level understanding. Allow 8–12 weeks for solid preparation.
- Ignoring modern modules — Cloud Security, IoT Hacking, and Mobile Platforms are increasingly weighted in CEH v13. Do not treat them as afterthoughts.
- Memorizing without understanding — the exam tests applied knowledge, not rote memorization. Focus on understanding why attacks work and how defenses counter them.
- Neglecting practice exams — take multiple full-length practice tests under timed conditions before scheduling the real exam. They reveal weak areas and build exam-day stamina.
Your Next Move
The CEH certification is a career accelerator. It validates offensive security skills that employers actively seek, satisfies compliance requirements for government and defense positions, and provides a structured learning path through the most critical domains of ethical hacking.
The most efficient way to get certified is the CEH v13 Master package, which bundles everything — eCourseware, iLabs access, the exam voucher, and one free retake — into a single purchase. It removes the guesswork and gives you every resource needed to earn the CEH Standard credential and progress toward CEH Master.
Complete CEH v13 Master package — eCourseware, hands-on labs, exam voucher, and 1 free retake included.