The Certified Ethical Hacker (CEH) Practical exam is a hands-on penetration test, unlike its multiple-choice counterpart, the CEH ANSI. In this article, you’ll learn the difference between the two, and we’ll help you decide which is right for you.
The CEH Practical exam, designed by the EC Council, was created to test your knowledge of various ethical hacking domains and techniques. This rigorous hands-on exam uses virtual machines and applications to test your ability to find solutions to simulated hacking challenges.
Obtaining it is enough to score you a first interview. But before taking this six-hour exam, let’s first learn more about it and better understand how recognized and respected it is in the market.
If you’re ready, let’s start.
Understanding the CEH Practical Exam
The Certified Ethical Hacker Practical lasts six hours (including a 15-minute break) and tests you on your ability to solve 20 real-life obstacles. You’ll need a minimum score of 70% to pass this exam, equivalent to accurately finding solutions for 14 of the 20 challenges.
According to the EC-Council, this isn’t a simulated exam. Instead, it mimics a real corporate network through live virtual machines, networks, and applications designed to test your skills.
While this may scare some aspiring test takers, this exam is “open book,” meaning you can look up resources on the Internet and refer to your notes.
Skills CEH may test you on include:
- Understanding attack vectors
- OS, network, and system enumeration
- System hacking, steganography, steganalysis, and the ability to cover one’s tracks
- Packet sniffing
- How to identify and use viruses, worms, and malware
- SQL injection attacks
- Cryptography attacks
- Vulnerability analysis to identify holes in security
- Network scanning
- OWASP
CEH Practical costs $550. If passed, the certification is valid for three years. However, you must acquire 120 EC-Council Continuing Education (ECE) credits to maintain its validity.
These credits can be acquired by attending IT seminars, reading IT security books, publishing papers, attending courses, and through a number of other means.
Should you fail the first exam, you can purchase a retake test voucher at a discounted price.
Comparing CEH Practical and CEH ANSI
When researching CEH or Certified Ethical Hacker, you may be surprised to find two results: CEH Practical and CEH ANSI. Both are designed by the EC-Council and test your ethical pentesting abilities. If you pass both, you obtain your CEH Master credential.
Let’s break down the key differences.
As you can see, CEH Practical is much more accessible than its multiple-choice counterpart, CEH ANSI. It’s both cheaper and doesn’t require prerequisites.
It should be noted that the prerequisites needed to take CEH ANSI vs Practical are substantial. You’ll need at least two years of professional experience in information security, and if you don’t have that, you’ll have to enroll in an intensive training course.
There are three courses to choose from:
The courses mentioned above include a course voucher. You may also enroll in EC-Council’s eCourseware course for $850, a self-paced program that doesn’t include an exam voucher.
Benefits and Drawbacks of the CEH Practical Exam
Certified Ethical Hacker (CEH) Practical has benefits and drawbacks. To better understand each pro and con, we’ll compare it to two other comparable ethical hacking certifications: CEH ANSI and OSCP.
CEH Practical Benefits
- The most glaring benefit is the one to your pocket. CEH Practical costs $550, whereas CEH ANSI may cost you thousands if you’re required to take a training course. OSCP will run you at least $1649 USD, which includes the exam voucher and training course.
- Another benefit of CEH Practical is that it doesn’t require any prerequisites. CEH ANSI requires two years of experience in digital security or asks test takers to enroll in an intensive course. Official courses are available for the Practical exam, but you can opt for cheaper options to learn the material.
- It’s also an easier exam than OSCP. This 24-hour exam is infamous for its difficulty despite marketing itself as an entry-level pentesting certification. Rather than individual challenges, the OSCP requires exploiting both standalone machines and an Active Directory network with full privilege escalation and a thorough report.
- CEH is also in higher demand than OSCP. When searching for jobs, you’ll find that more employers ask applicants to have CEH than OSCP, but we’ll discuss this further in the coming sections. To be clear, employers don’t appear to differentiate between CEH Practical and CEH ANSI.
- Lastly, CEH Practical is an approved baseline certification for DoD 8570. CEH ANSI is, too, but OSCP isn’t.
Drawbacks
- The CEH Practical exam is harder than ANSI, as it’s hands-on. Remember that the latter is purely multiple-choice.
- Another drawback is that while having CEH Practical on your resume will help you get your foot in the door, those in the know value OSCP more. That means that when it comes to the interview, those with real-life red and blue team skills will be much more impressed by OSCP than CEH Practical.
In other words, the CEH will attract the attention of the non-technical hiring manager, but the cyber security manager who’ll ultimately hire you will be much more impressed by OSCP.
CEH Practical Market Recognition
As a standalone exam, Certified Ethical Hacker Practical isn’t well known. That said, hiring teams—especially those that aren’t techies—don’t seem to care if you have CEH Practical or ANSI. All they care about is that you have CEH on your resume.
If you query CEH on Indeed, you’ll find over 1,000 jobs requiring this certification.
When looking at the preferred certifications portion of the job post, you’ll often see CEH without the Practical or ANSI exam being specified.
Most employers don’t care which one you have, so long as you have one. In all likelihood, they don’t even know there’s more than one CEH designation.
When we queried OSCP, over 500 jobs popped up.
This shows that HR teams prefer applicants to have CEH. However, later in the interview process, employers prefer applicants with an OSCP certification. In other words, CEH gets your foot in the door, while OSCP gets you the job.
CEH Practical Exam Questions and Preparation
Certified Ethical Hacker (CEH) Practical requires you to complete 20 ethical hacking challenges. These challenges are designed to test you on various red team skills.
Some of the penetration testing skills you’ll want to know before taking the test include:
- User enumeration
- Steganography, steganalysis attacks, and how to cover your digital tracks
- Identifying viruses, computer worms, and malware
- Packet sniffing, ideally Wireshark or Tcpdump
- SQL injection attacks
- Cryptography attacks
- Vulnerability analysis
- Nmap
- Hydra
- Metasploit
- Burpsuite
- Nikto or Nessus
- Dirbuster/gobuster
- Aircrack-ng
- Wpscan
- Hashcat
- Steghide
- IDA
- Vercrypt
Of course, this isn’t an exhaustive list. Also, not all of these tools will be needed to complete the 20 challenges, and you can learn them in many ways.
One is to take a course provided by the EC-Council. CEH ANSI official training courses cover the tools you’ll use on the practical exam. The issue is that these courses range from $850 to $3,499.
EC-Council also offers Labs CEH, a $199 lab-access course with virtual machines for hands-on practice.
Of course, you can use any resources you wish to prepare for this exam.
The StationX Accelerator Program grants access to over 1,000 courses and labs covering everything from basic networking to advanced ethical hacking. If you’re considering pursuing the CEH Practical, some of the courses below would be of interest to you.
CEH Practical Training
Conclusion
Now that you know what Certified Ethical Hacker Practical is all about and what you’ll be tested on, is the exam worth it?
It depends.
If you’re determined to become a penetration tester, the OSCP is your best option. It focuses entirely on offensive security and is more valued by pentesting managers, who ultimately decide whether to hire you.
You see so many CEH requirements on job posts because they’re applied to blue and red team positions, though that is primarily for the ANSI certification.
If you want to become a CEH, which one should you take, the Practical or ANSI?
While CEH Practical might be more challenging, it’s far more affordable than ANSI. Studying for a hands-on exam such as CEH Practical will better equip you with the pentesting skills you’ll need while on the job than a multiple-choice exam such as CEH ANSI.
If your ultimate goal is to learn penetration testing skills, you may want to do the extra work of obtaining CEH Practical. If you don’t care which CEH you get because you’ll ultimately obtain OSCP, and money isn’t an obstacle, you may consider taking CEH ANSI as it’s the easiest of the two exams.
To start studying for your next certification, we recommend joining StationX’s Accelerator Program. Joining grants you access to over 1,000 labs and courses, mentors, study groups, and a supportive community.