EC-COUNCIL C|EH
C|EH Program Information
For C|EH v13, the program is divided into 20 modules delivered through a structured training plan over 5 days. Each module includes extensive hands-on lab components, allowing participants to practice ethical hacking techniques in real-time on live machines. The modules are designed to build foundational skills in ethical hacking and prepare participants for the C|EH certification exam.
The labs focus on real-world scenarios, covering cutting-edge hacking tools, AI integration, and the latest cybersecurity threats.
5 Phases of Ethical Hacking
Certified Ethical Hacker (CEH) Version 13 is the latest and most advanced cybersecurity certification, building upon the comprehensive foundation of its predecessor. CEH v13 provides enhanced hands-on learning across emerging technologies, making it a standout among other industry certifications. It equips aspiring ethical hackers with the skills needed to stay ahead of the constantly evolving cyber threats. Understanding the 5 phases of ethical hacking is critical to protecting any organization, as it helps you anticipate and counter potential attacks effectively.
-
Reconnaissance
The first phase involves information gathering, where the attacker collects as much data as possible about the target before launching the attack. This may include scanning for publicly available information, probing the target's network, or exploring other sources for insights. -
Scanning
In this phase, various scanning tools and techniques are used to further explore the target’s network, systems, or applications. This step is vital for detecting vulnerabilities that may be exploited during an attack. -
Gaining Access
This phase involves exploiting vulnerabilities uncovered during the scanning phase. The attacker uses different methods to penetrate the system or application, potentially gaining control over the target. -
Maintaining Access
Also referred to as persistence, this phase ensures the attacker can maintain long-term access to the compromised system, even after a reboot or user logoff. Attackers may install backdoors or other tools to sustain their presence without being detected. -
Clearing Tracks
The final phase is about erasing any evidence of the intrusion. Attackers work to delete logs, remove malware or scripts, and undo any changes that might alert security teams to their activity. This ensures the attacker’s actions remain hidden and undetected.
By mastering these five phases, certified ethical hackers under CEH v13 can effectively identify and neutralize potential security threats before they materialize, keeping organizations safe from cyberattacks.
What’s New in C|EH v13:
C|EH v13 is an enhanced program that introduces AI-driven tools and techniques, covering ethical hacking with hands-on labs, assessments, mock engagements, and global hacking competitions. This version integrates AI across all five phases of hacking. It also includes new modules on hacking AI systems, cloud security, IoT, and operational technology. The comprehensive training prepares participants for the updated C|EH v13 certification exam.
C|EHv13 New Learning Framework
The CEH v13 is a specialized, one-of-akind training program that helps you gain expertise in ethical hacking, AI, and machine learning. With hands-on training labs, knowledge-based and practical exams, a mock ethical hacking engagement on live networks, and a global hacking competition, this program ensures you master the most in-demand skills needed to excel and stand out in the cybersecurity industry.
This learning framework offers not only a comprehensive training program to prepare you for the certification exam but also the industry’s most robust, in-depth, handson lab and practice range experience.
4-The World's First Ethical Hacking Certification with a 4-Phase AI-Powered Learning Framework:
C|EH v13 incorporates Training, Hands-on Learning Labs, Certification Assessments, Practice Cyber Ranges, Cyber Competitions, and opportunities for continuous learning all into one comprehensive program curated through our new Learning Framework: Learn, Certify, Engage, and Compete. Into detail about the 4-Phase Learning Framework for C|EH v12.
1. C|EHv13 Learn
Learn ethical hacking with the revolutionary CEH v13—a game-changer for aspiring ethical hackers.
With 20 cutting-edge modules, you’ll gain the core skills needed to dominate the cybersecurity landscape. CEH isn’t just keeping pace—it’s leading the charge, evolving with the latest operating systems, exploits, tools, and hacking techniques to ensure you’re always ahead of the curve. Dive deep into the future of cybersecurity with training that integrates AI into all five phases of ethical hacking, reconnaissance and scanning to gaining access, maintaining access, and covering tracks. You’ll harness the power of AI to supercharge your hacking techniques and disrupt AI systems—giving you 10x efficiency in your cybersecurity role. CEH v13 isn’t just a certification; it’s a fully immersive experience. CEH combines comprehensive knowledge-based training with immersive hands-on labs to ensure a well-rounded learning experience. You’ll engage with live targets, tools, and vulnerable systems in a controlled environment, building real-world skills that empower you to confidently apply your expertise in any scenario. Get ready to transform the way you hack and protect the digital world! Every tactic discussed in training is backed by step-by-step labs conducting in a live virtualized environment with live targets, live tools, and vulnerable systems. WITH OVER 220 LABS, AND our Lab technology, you will have comprehensive hands-on practice to learn and apply the knowledge you attain.
C|EH V13 MODULES:
Module 01: Introduction to Ethical Hacking
Learn the fundamentals and key issues in information security, including the basics of ethical hacking, information security
controls, relevant laws, and standard procedures.
Module 02: Footprinting and Reconnaissance
Learn how to use the latest techniques and tools for footprinting and reconnaissance, a critical pre-attack phase of ethical hacking
Module 03: Scanning Networks
Learn different network scanning techniques and countermeasures.
Module 04: Enumeration
Learn various enumeration techniques, including Border Gateway Protocol (BGP) and Network File Sharing (NFS) exploits and associated countermeasures.
Module 05: Vulnerability Analysis
Learn how to identify security loopholes in a target organization’s network, communication infrastructure, and end systems. Different types of vulnerability assessment and vulnerability assessment tools are also included.
Module 06: System Hacking
Learn about the various system hacking methodologies used to discover system and network vulnerabilities, including steganography, steganalysis attacks, and how to cover tracks.
Module 07: Malware Threats
Learn about different types of malware (Trojan, viruses, worms, etc.), APT and fileless malware, malware analysis procedures, and malware countermeasures.
Module 08: Sniffing
Learn about packet sniffing techniques and their uses for discovering network vulnerabilities, plus countermeasures to defend against sniffing attacks.
Module 09: Social Engineering
Learn social engineering concepts and techniques, including how to identify theft attempts, audit human-level vulnerabilities, and suggest social engineering countermeasures.
Module 10: Denial-of-Service
Learn about different Denial of Service (DoS) and Distributed DoS (DDoS) attack techniques, plus the tools used to audit a target and devise DoS and DDoS countermeasures and protections. Certified Ethical Hacker Powered by AI Learn Certified Ethical Hacker v13 Brochure Learn Course Outline
Module 11: Session Hijacking
Learn the various session-hijacking techniques used to discover network-level session management, authentication, authorization, and cryptographic weaknesses and associated countermeasures.
Module 12: Evading IDS, Firewalls, and Honeypots
Learn about firewalls, intrusion detection systems (IDS), and honeypot evasion techniques; the tools used to audit a network perimeter for weaknesses; and countermeasures.
Module 13: Hacking Web Servers
Learn about web server attacks, including a comprehensive attack methodology used to audit vulnerabilities in web server infrastructures and countermeasures.
Module 14: Hacking Web Applications
Learn about web application attacks, including a comprehensive hacking methodology for auditing vulnerabilities in web applications and countermeasures.
Module 15: SQL Injection
Learn about SQL injection attack techniques, evasion techniques, and SQL injection countermeasures.
Module 16: Hacking Wireless Networks
Learn about different types of encryption, threats, hacking methodologies, hacking tools, security tools, and countermeasures for wireless networks.
Module 17: Hacking Mobile Platforms
Learn mobile platform attack vectors, Android and iOS hacking, mobile device management, mobile security guidelines, and security tools.
Module 18: IoT Hacking
Learn different types of Internet of Things (IoT) and operational technology (OT) attacks, hacking methodologies, hacking tools, and countermeasures.
Module 19: Cloud Computing
Learn different cloud computing concepts, such as container technologies and serverless computing, various cloud computing threats, attacks, hacking methodologies, and cloud security techniques and tools.
Module 20: Cryptography
Learn about encryption algorithms, cryptography tools, Public Key Infrastructure (PKI), email encryption, disk encryption, cryptography attacks, and cryptanalysis tools.
Hands-On Learning labs
What’s Covered
-
100% virtualization for a complete learning experience
-
After login, you will have full access to pre-configured targets, networks, and the attack tools necessary to exploit them:
-
Pre-configured vulnerable websites
-
Vulnerable, unpatched operating systems
-
Fully networked environments
-
4000+ hacking tools
-
And much more!
-
-
Wide range of target platforms to hone your skills
-
550 attack techniques covered
-
Objective-oriented flags for critical thinking and applied knowledge assessment
-
Cloud based cyber range
2. C|EHv13 Certify
The Certified Ethical Hacker (CEH) is globally recognized as the gold standard for assessing ethical hacking skills. With CEH v13, you have the option to take two exams: a knowledge-based exam and a practical exam to earn the CEH Master certification
CEH Knowledge-Based Exam
The CEH knowledge-based exam is a four-hour exam with 125 multiple-choice questions. It will test your skills in information security threats, attack vectors, attack detection, attack prevention, procedures, methodologies, and more! This exam is recognized worldwide as the original and most trusted tactical cybersecurity certification exam
CEH Practical Exam
The CEH Practical exam is the world’s first ethical hacking practical exam to have ANAB and US DoD approval. The CEH Practical is a 6-hour, 100% hands-on exam delivered in our Cyber Range that requires you to demonstrate the skills and abilities of ethical hacking techniques such as:
-
Port scanning tools (e.g., Nmap, Hping)
-
Vulnerability detection
-
Attacks on a system (e.g., DoS, DDoS, session hijacking, web server and web application attacks, SQL injection, and wireless threats)
-
SQL injection methodology and evasion techniques
-
Web application security tools (e.g., Acunetix WVS)
-
SQL injection detection tools (e.g., IBM Security AppScan)
-
Communication protocols
C|EH MASTER
Upon successfully completing both the CEH Knowledge-based Exam and the CEH Practical Exam, the CEH (Master) designation is awarded. A CEH (Master) signifies a high level of proficiency in ethical hacking knowledge, skills, and abilities, with a total of 6 hours of testing to prove their competency. The top 10 performers in both the CEH Knowledge-based Exam and CEH Practical Exam are featured on the CEH Master Global Ethical Hacking Leader Board.
3. C|EHv12 Engage
New to CEH v13, learners will embark on their first emulated ethical hacking engagement. This four-phase engagement requires students to think critically and test the knowledge and skills gained by capturing a series of flags in each phase. It demonstrates the live application of skills and abilities in a consequence-free environment through EC-Council’s new “Cyber Range.”
In the engage phase of learning: you will apply the 4 phases to ethical hacking while conducting real-world ethical hacking assignments. They include:
-
Vulnerability assessment
-
Gaining access
-
Perimeter and Web App Exploitation
-
Mobile, IoT, OT Exploitation:
4. C|EHv13 Compete
True progress thrives on competition—it’s what drives you to reach your full potential and become the best in the game!
The CEH global challenges takes place monthly, providing capture-the-flag style competitions that give learners exposure to various new technologies and platforms, from web applications, OT, IoT, SCADA, and ICS systems to cloud and hybrid environments. You will compete against other ethical hackers in a fast-paced, four-hour event as you climb the leaderboard in curated CTFs designed around the ethical hacking process. Each objective-based flag sharpens your current skills, tests your critical thinking, and covers the latest vulnerabilities and exploits. Hosted entirely online in EC-Council’s advanced Cyber Range, these scenario-based engagements are set in fully developed network and application environments with real operating systems, networks, tools, and vulnerabilities. You’ll have the opportunity to practice, engage, compete, build and hone your hacking techniques as you engage with new target organizations, all while racing against the clock to prove your mastery.
CEH Global Challenges
Each month will present a different theme and challenge, with capture-the-flag-style competitions focusing on ethical hackers’ core skills and abilities. Gain exposure to new tools, focus on new attack vectors, and try to exploit emerging vulnerabilities.
New Challenges Every Month!
September '24 - Off-The ShelfOff-The-Shelf CMS Exploitation
October '24 - Windows Wreckage: Unravelling Code & Hunting Threats
November '24 - Web Warriors: Defend Against the OWASP Menace
December '24 - Operation ATT&CK Unveil: Decoding Cyber Tactics
January '25 - RansomWar: Battle for Decryption
February '25 - Supply Chain Siege: Unravel the Hidden Links
March '25 - Operation Nexus: Breach the Grid
April '25 - Identity Infiltration: Breach the Directory
May '25 - API Apocalypse: Breach the Gateways
June '25 - Data Fortress Breach: Cracking the Core
July ‘25 - Operation Deep Breach: Hack, Escalate, Pivot
August ‘25 - eCommerce Rampage: Defend the Digital Marketplace
Sept ‘25 - Cloud Clash: Battle for Infrastructure Security
Key Updates to the C|EH v13
Content Updates:
-
AI-powered Learning Framework: Learn, Certify, Engage, Compete.
-
Monthly AI-integrated challenges in global competitions.
-
Complies with NICE 2.0 Framework.
-
Includes industry-wide job task analysis.
-
AI-enhanced hands-on labs and practice range.
-
Lab-focused program (50% time in labs).
-
Updated malware and AI hacking tools.
-
Real-time simulated lab environments with 4,000+ tools.
Technology Updates
-
AI integration in MITRE ATT&CK.
-
AI techniques for persistence and security evasion.
-
AI in edge, fog, and grid computing.
C|EHv13 JOBS
Having your C|EH certification will open doors to over 40+ different career roles. They include:
Course Brochures (click the icon)