Certified Ethical Hacker Certification

Course Code: 312-50

A Certified Ethical Hacker is a specialist typically working in a red team environment, focused on attacking computer systems and gaining access to networks, applications, databases, and other critical data on secured systems. A C|EH understands attack strategies, the use of creative attack vectors, and mimics the skills and creativity of malicious hackers. Unlike malicious hackers and actors, Certified Ethical Hackers operate with permission from the system owners and take all precautions to ensure the outcomes remain confidential. Bug bounty researchers are expert ethical hackers who use their attack skills to uncover vulnerabilities in the systems.

Category:

At the end of this course, you will be able to:

  • Discover vulnerabilities from an attacker’s POV so that weak points can be fixed.
  • Implement a secure network that prevents security breaches.
  • Defend national security by protecting data from terrorists.
  • Gain the trust of customers and investors by ensuring the security of their products and data.
  • Help protect networks with real-world assessments.
  • There are no specific prerequisites for the C|EH program, however we strongly recommend candidates possess a minimum of 2 years of experience in IT security before joining a C|EH training program.
  • Cybersecurity Auditor
  • Security Administrator
  • IT Security Administrator
  • Cyber Defense Analyst
  • Vulnerability Assessment Analyst
  • Warning Analyst
  • Information Security Analyst 1
  • Security Analyst L1
  • Infosec Security Administrator
  • Cybersecurity Analyst level 1, level 2, & level 3
  • Network Security Engineer
  • SOC Security Analyst
  • Security Analyst
  • Network Engineer
  • Senior Security Consultant
  • Information Security Manager
  • Senior SOC Analyst
  • Solution Architect
  • Cybersecurity Consultant
  • Mid-Level Information Security Auditor
● Cover the fundamentals of key issues in the information security world, including the basics of ethical hacking, information security controls, relevant laws and standard procedures.
● Learn how to use the latest techniques and tools to perform foot printing and reconnaissance, a critical pre-attack phase of the ethical hacking process.
● Cover the fundamentals of key issues in the information security world, including the basics of ethical hacking, information security controls, relevant laws, and standard procedures.
● Learn various enumeration techniques, such as Border Gateway Protocol (BGP) and Network File Sharing (NFS) exploits, and associated countermeasures.
● Learn how to identify security loopholes in a target organization’s network, communication infrastructure, and end systems.
● Learn about the various system hacking methodologies including steganography, steganalysis attacks, and covering tracks used to discover system and network vulnerabilities.
● Get an introduction to the different types of malware, such as Trojans, viruses, and worms, as well as system auditing for malware attacks, malware analysis, and countermeasures.
● Learn about packet-sniffing techniques and how to use them to discover network vulnerabilities as well as countermeasures to defend against sniffing attacks.
● Learn social engineering concepts and techniques, including how to identify theft attempts, audit human-level vulnerabilities, and suggest social engineering countermeasures.
● Learn about different Denial of Service (DoS) and Distributed DoS (DDoS) attack techniques, as well as the tools used to audit a target and devise DoS and DDoS countermeasures and protections.
● Understand the various session hijacking techniques used to discover network-level session management, authentication, authorization, and cryptographic weaknesses and associated countermeasures.
● Get introduced to firewall, intrusion detection system (IDS), and honeypot evasion techniques; the tools used to audit a network perimeter for weaknesses; and countermeasures.
● Learn about web server attacks, including a comprehensive attack methodology used to audit vulnerabilities in web server infrastructures and countermeasures.
● Learn about web application attacks, including a comprehensive web application hacking methodology used to audit vulnerabilities in web applications and countermeasures.
● Learn about SQL injection attack techniques, injection detection tools, and countermeasures to detect and defend against SQL injection attempts.
● Learn about wireless encryption, wireless hacking methodologies and tools, and Wi-Fi security tools.
● Learn about mobile platform attack vectors, Android vulnerability exploits, and mobile security guidelines and tools.
● Learn about packet-sniffing techniques and how to use them to discover network vulnerabilities, as well as countermeasures to defend against sniffing attacks.
● Learn different cloud computing concepts, such as container technologies and server less computing, various cloud computing threats, attacks, hacking methodology, and cloud security techniques and tools.
● In the final module, learn about cryptography and ciphers, public-key infrastructure, cryptography attacks, and cryptanalysis tools.
Length of exam 4 hours
Number of questions 125 questions
Question format Multiple choice questions
Passing grade 70%
Exam availability English
Testing center ECC and VUE authorized testing center