top of page
EC-COUNCIL

EC-COUNCIL C|EH

CEH_LOGO
NewEra

C|EH Program Information​

For C|EH v13, the program is divided into 20 modules delivered through a structured training plan over 5 days. Each module includes extensive hands-on lab components, allowing participants to practice ethical hacking techniques in real-time on live machines. The modules are designed to build foundational skills in ethical hacking and prepare participants for the C|EH certification exam.

The labs focus on real-world scenarios, covering cutting-edge hacking tools, AI integration, and the latest cybersecurity threats.

5Phases

5 Phases of Ethical Hacking

Certified Ethical Hacker (CEH) Version 13 is the latest and most advanced cybersecurity certification, building upon the comprehensive foundation of its predecessor. CEH v13 provides enhanced hands-on learning across emerging technologies, making it a standout among other industry certifications. It equips aspiring ethical hackers with the skills needed to stay ahead of the constantly evolving cyber threats. Understanding the 5 phases of ethical hacking is critical to protecting any organization, as it helps you anticipate and counter potential attacks effectively.

  1. Reconnaissance
    The first phase involves information gathering, where the attacker collects as much data as possible about the target before launching the attack. This may include scanning for publicly available information, probing the target's network, or exploring other sources for insights.

  2. Scanning
    In this phase, various scanning tools and techniques are used to further explore the target’s network, systems, or applications. This step is vital for detecting vulnerabilities that may be exploited during an attack.

  3. Gaining Access
    This phase involves exploiting vulnerabilities uncovered during the scanning phase. The attacker uses different methods to penetrate the system or application, potentially gaining control over the target.

  4. Maintaining Access
    Also referred to as persistence, this phase ensures the attacker can maintain long-term access to the compromised system, even after a reboot or user logoff. Attackers may install backdoors or other tools to sustain their presence without being detected.

  5. Clearing Tracks
    The final phase is about erasing any evidence of the intrusion. Attackers work to delete logs, remove malware or scripts, and undo any changes that might alert security teams to their activity. This ensures the attacker’s actions remain hidden and undetected.

By mastering these five phases, certified ethical hackers under CEH v13 can effectively identify and neutralize potential security threats before they materialize, keeping organizations safe from cyberattacks.

What’s New in C|EH v13:

C|EH v13 is an enhanced program that introduces AI-driven tools and techniques, covering ethical hacking with hands-on labs, assessments, mock engagements, and global hacking competitions. This version integrates AI across all five phases of hacking. It also includes new modules on hacking AI systems, cloud security, IoT, and operational technology. The comprehensive training prepares participants for the updated C|EH v13 certification exam.

C|EHv13 New Learning Framework

The CEH v13 is a specialized, one-of-akind training program that helps you gain expertise in ethical hacking, AI, and machine learning. With hands-on training labs, knowledge-based and practical exams, a mock ethical hacking engagement on live networks, and a global hacking competition, this program ensures you master the most in-demand skills needed to excel and stand out in the cybersecurity industry.

This learning framework offers not only a comprehensive training program to prepare you for the certification exam but also the industry’s most robust, in-depth, handson lab and practice range experience.​

4-The World's First Ethical Hacking Certification with a 4-Phase AI-Powered Learning Framework:

C|EH v13 incorporates Training, Hands-on Learning Labs, Certification Assessments, Practice Cyber Ranges, Cyber Competitions, and opportunities for continuous learning all into one comprehensive program curated through our new Learning Framework: Learn, Certify, Engage, and Compete. Into detail about the 4-Phase Learning Framework for C|EH v12.

4Phases

1. C|EHv13 Learn

Learn ethical hacking with the revolutionary CEH v13—a game-changer for aspiring ethical hackers.

With 20 cutting-edge modules, you’ll gain the core skills needed to dominate the cybersecurity landscape. CEH isn’t just keeping pace—it’s leading the charge, evolving with the latest operating systems, exploits, tools, and hacking techniques to ensure you’re always ahead of the curve. Dive deep into the future of cybersecurity with training that integrates AI into all five phases of ethical hacking, reconnaissance and scanning to gaining access, maintaining access, and covering tracks. You’ll harness the power of AI to supercharge your hacking techniques and disrupt AI systems—giving you 10x efficiency in your cybersecurity role. CEH v13 isn’t just a certification; it’s a fully immersive experience. CEH combines comprehensive knowledge-based training with immersive hands-on labs to ensure a well-rounded learning experience. You’ll engage with live targets, tools, and vulnerable systems in a controlled environment, building real-world skills that empower you to confidently apply your expertise in any scenario. Get ready to transform the way you hack and protect the digital world! Every tactic discussed in training is backed by step-by-step labs conducting in a live virtualized environment with live targets, live tools, and vulnerable systems. WITH OVER 220 LABS, AND our Lab technology, you will have comprehensive hands-on practice to learn and apply the knowledge you attain.

C|EH V13 MODULES:

Module 01: Introduction to Ethical Hacking

Learn the fundamentals and key issues in information security, including the basics of ethical hacking, information security

controls, relevant laws, and standard procedures.

Module 02: Footprinting and Reconnaissance

Learn how to use the latest techniques and tools for footprinting and reconnaissance, a critical pre-attack phase of ethical hacking

Module 03: Scanning Networks

Learn different network scanning techniques and countermeasures.

Module 04: Enumeration

Learn various enumeration techniques, including Border Gateway Protocol (BGP) and Network File Sharing (NFS) exploits and associated countermeasures.

Module 05: Vulnerability Analysis

Learn how to identify security loopholes in a target organization’s network, communication infrastructure, and end systems. Different types of vulnerability assessment and vulnerability assessment tools are also included.

Module 06: System Hacking

Learn about the various system hacking methodologies used to discover system and network vulnerabilities, including steganography, steganalysis attacks, and how to cover tracks.

Module 07: Malware Threats

Learn about different types of malware (Trojan, viruses, worms, etc.), APT and fileless malware, malware analysis procedures, and malware countermeasures.

Module 08: Sniffing

Learn about packet sniffing techniques and their uses for discovering network vulnerabilities, plus countermeasures to defend against sniffing attacks.

Module 09: Social Engineering

Learn social engineering concepts and techniques, including how to identify theft attempts, audit human-level vulnerabilities, and suggest social engineering countermeasures.

Module 10: Denial-of-Service

Learn about different Denial of Service (DoS) and Distributed DoS (DDoS) attack techniques, plus the tools used to audit a target and devise DoS and DDoS countermeasures and protections. Certified Ethical Hacker Powered by AI Learn Certified Ethical Hacker v13 Brochure Learn Course Outline

Module 11: Session Hijacking

Learn the various session-hijacking techniques used to discover network-level session management, authentication, authorization, and cryptographic weaknesses and associated countermeasures.

Module 12: Evading IDS, Firewalls, and Honeypots

Learn about firewalls, intrusion detection systems (IDS), and honeypot evasion techniques; the tools used to audit a network perimeter for weaknesses; and countermeasures.

Module 13: Hacking Web Servers

Learn about web server attacks, including a comprehensive attack methodology used to audit vulnerabilities in web server infrastructures and countermeasures.

Module 14: Hacking Web Applications

 Learn about web application attacks, including a comprehensive hacking methodology for auditing vulnerabilities in web applications and countermeasures.

Module 15: SQL Injection

Learn about SQL injection attack techniques, evasion techniques, and SQL injection countermeasures.

Module 16: Hacking Wireless Networks

Learn about different types of encryption, threats, hacking methodologies, hacking tools, security tools, and countermeasures for wireless networks.

Module 17: Hacking Mobile Platforms

Learn mobile platform attack vectors, Android and iOS hacking, mobile device management, mobile security guidelines, and security tools.

Module 18: IoT Hacking

Learn different types of Internet of Things (IoT) and operational technology (OT) attacks, hacking methodologies, hacking tools, and countermeasures.

Module 19: Cloud Computing

Learn different cloud computing concepts, such as container technologies and serverless computing, various cloud computing threats, attacks, hacking methodologies, and cloud security techniques and tools.

Module 20: Cryptography

Learn about encryption algorithms, cryptography tools, Public Key Infrastructure (PKI), email encryption, disk encryption, cryptography attacks, and cryptanalysis tools.​

CEHv13AI
Modules
CEHv13AI

Hands-On Learning labs

What’s Covered

  • 100% virtualization for a complete learning experience

  • After login, you will have full access to pre-configured targets, networks, and the attack tools necessary to exploit them:

    • Pre-configured vulnerable websites

    • Vulnerable, unpatched operating systems

    • Fully networked environments

    • 4000+ hacking tools

    • And much more!

  • Wide range of target platforms to hone your skills

  • 550 attack techniques covered

  • Objective-oriented flags for critical thinking and applied knowledge assessment

  • Cloud based cyber range

2. C|EHv13 Certify

The Certified Ethical Hacker (CEH) is globally recognized as the gold standard for assessing ethical hacking skills. With CEH v13, you have the option to take two exams: a knowledge-based exam and a practical exam to earn the CEH Master certification

CEH Knowledge-Based Exam

The CEH knowledge-based exam is a four-hour exam with 125 multiple-choice questions. It will test your skills in information security threats, attack vectors, attack detection, attack prevention, procedures, methodologies, and more! This exam is recognized worldwide as the original and most trusted tactical cybersecurity certification exam

 

CEH Practical Exam

The CEH Practical exam is the world’s first ethical hacking practical exam to have ANAB and US DoD approval. The CEH Practical is a 6-hour, 100% hands-on exam delivered in our Cyber Range that requires you to demonstrate the skills and abilities of ethical hacking techniques such as:

  • Port scanning tools (e.g., Nmap, Hping)

  • Vulnerability detection

  • Attacks on a system (e.g., DoS, DDoS, session hijacking, web server and web application attacks, SQL injection, and wireless threats)

  • SQL injection methodology and evasion techniques

  • Web application security tools (e.g., Acunetix WVS)

  • SQL injection detection tools (e.g., IBM Security AppScan)

  • Communication protocols

C|EH MASTER

Upon successfully completing both the CEH Knowledge-based Exam and the CEH Practical Exam, the CEH (Master) designation is awarded. A CEH (Master) signifies a high level of proficiency in ethical hacking knowledge, skills, and abilities, with a total of 6 hours of testing to prove their competency. The top 10 performers in both the CEH Knowledge-based Exam and CEH Practical Exam are featured on the CEH Master Global Ethical Hacking Leader Board.​

Phases_resumo

​​​​3. C|EHv12 Engage

New to CEH v13, learners will embark on their first emulated ethical hacking engagement. This four-phase engagement requires students to think critically and test the knowledge and skills gained by capturing a series of flags in each phase. It demonstrates the live application of skills and abilities in a consequence-free environment through EC-Council’s new “Cyber Range.”

In the engage phase of learning: you will apply the 4 phases to ethical hacking while conducting real-world ethical hacking assignments. They include:

  1. Vulnerability assessment

  2. Gaining access

  3. Perimeter and Web App Exploitation

  4. Mobile, IoT, OT Exploitation:

4. C|EHv13 Compete

True progress thrives on competition—it’s what drives you to reach your full potential and become the best in the game!

The CEH global challenges takes place monthly, providing capture-the-flag style competitions that give learners exposure to various new technologies and platforms, from web applications, OT, IoT, SCADA, and ICS systems to cloud and hybrid environments. You will compete against other ethical hackers in a fast-paced, four-hour event as you climb the leaderboard in curated CTFs designed around the ethical hacking process. Each objective-based flag sharpens your current skills, tests your critical thinking, and covers the latest vulnerabilities and exploits. Hosted entirely online in EC-Council’s advanced Cyber Range, these scenario-based engagements are set in fully developed network and application environments with real operating systems, networks, tools, and vulnerabilities. You’ll have the opportunity to practice, engage, compete, build and hone your hacking techniques as you engage with new target organizations, all while racing against the clock to prove your mastery. ​

medals

CEH Global Challenges

Each month will present a different theme and challenge, with capture-the-flag-style competitions focusing on ethical hackers’ core skills and abilities. Gain exposure to new tools, focus on new attack vectors, and try to exploit emerging vulnerabilities.

New Challenges Every Month!

September '24 - Off-The ShelfOff-The-Shelf CMS Exploitation

October '24 - Windows Wreckage: Unravelling Code & Hunting Threats

November '24 - Web Warriors: Defend Against the OWASP Menace

December '24 - Operation ATT&CK Unveil: Decoding Cyber Tactics

January '25 - RansomWar: Battle for Decryption

February '25 - Supply Chain Siege: Unravel the Hidden Links

March '25 - Operation Nexus: Breach the Grid

April '25 - Identity Infiltration: Breach the Directory

May '25 - API Apocalypse: Breach the Gateways

June '25 - Data Fortress Breach: Cracking the Core

July ‘25 - Operation Deep Breach: Hack, Escalate, Pivot

August ‘25 - eCommerce Rampage: Defend the Digital Marketplace

Sept ‘25 - Cloud Clash: Battle for Infrastructure Security

4compete

​​​Key Updates to the C|EH v13

Content Updates:

  1. AI-powered Learning Framework: Learn, Certify, Engage, Compete.

  2. Monthly AI-integrated challenges in global competitions.

  3. Complies with NICE 2.0 Framework.

  4. Includes industry-wide job task analysis.

  5. AI-enhanced hands-on labs and practice range.

  6. Lab-focused program (50% time in labs).

  7. Updated malware and AI hacking tools.

  8. Real-time simulated lab environments with 4,000+ tools.

​​​Technology Updates

  1. AI integration in MITRE ATT&CK.

  2. AI techniques for persistence and security evasion.

  3. AI in edge, fog, and grid computing.

Certified

​​​C|EHv13 JOBS

Having your C|EH certification will open doors to over 40+ different career roles. They include:

ahaha
jobs
CEH EC-COUNCIL
CEH CCISO CHFI CPENT EC-COUNCIL
CEH_Icon

Course Brochures (click the icon)

For more information:

Privacy Notice (GDPR):

Information will not be shared and used exclusively to communicate.

bottom of page