CEH stands for Certified Ethical Hacker, a cybersecurity certification from EC-Council that teaches professionals how to think like a hacker in order to better defend networks and systems against real attacks. Now in its 13th version (CEH v13), the program covers over 550 attack techniques and has added AI-driven cybersecurity skills to its curriculum. It’s one of the most recognized credentials in the cybersecurity industry, particularly for roles focused on vulnerability assessment and penetration testing.
What the Certification Covers
The CEH curriculum walks through the full lifecycle of a cyberattack, from initial reconnaissance to exploitation. You learn 20 core domains, starting with footprinting (gathering publicly available information about a target), scanning networks for open ports and services, and enumerating system details that reveal potential weaknesses. From there, the training moves into active exploitation: system hacking, malware analysis, social engineering, SQL injection, session hijacking, and techniques for evading intrusion detection systems and firewalls.
The program also covers attack surfaces that have expanded in recent years: wireless networks, mobile platforms, IoT and operational technology devices, and cloud computing environments. Cryptography rounds out the curriculum, covering how encryption protects data and where those protections can fail. The goal isn’t to turn you into a criminal hacker. It’s to give you the attacker’s perspective so you can identify and close vulnerabilities before someone with bad intentions finds them.
Eligibility Requirements
There are two paths to qualify for the CEH exam. The first is to attend an official EC-Council training course, which is open to all skill levels and doesn’t require any prior cybersecurity experience. If you complete the official training, you can register for the exam without an application or eligibility review.
The second path is for people who already work in cybersecurity. If you have at least two years of information security experience, you can skip the training course and go straight to the exam. You’ll need to submit evidence of your experience through an application process, which includes a non-refundable $100 fee. EC-Council expects self-study applicants to already have working knowledge of reconnaissance techniques, network and web application hacking, wireless and mobile security, cloud computing, and cryptography.
Exam Format and Cost
The CEH knowledge exam is 125 multiple-choice questions with a four-hour time limit. The passing score varies by exam form, ranging from 60% to 85% depending on the difficulty of the specific version you receive. There’s also a practical exam: a six-hour hands-on test with 20 real-world challenges where you demonstrate actual hacking techniques in a live environment. The practical exam uses the same variable passing threshold of 60% to 85%.
The total cost depends on how you prepare. The exam voucher alone runs $1,199 for non-members. Official EC-Council training, available as online self-paced, online live, or in-person classes, adds significantly to that figure. All told, pursuing CEH through the official training path is a substantially larger investment than some competing certifications. For comparison, the CompTIA PenTest+ exam voucher costs $392.
How CEH Compares to Other Certifications
CEH is often compared to CompTIA PenTest+ and the Offensive Security Certified Professional (OSCP). Each targets a slightly different audience. CEH focuses broadly on vulnerability assessment tools and attack techniques, largely through a multiple-choice knowledge exam. PenTest+ covers similar territory but adds performance-based questions and emphasizes professional skills like business processes, project workflows, and best practices in penetration testing. PenTest+ also maps directly to the NICE Cybersecurity Workforce Framework used by the U.S. military, which can matter for government roles.
OSCP sits at a higher difficulty level and is almost entirely hands-on, requiring you to break into multiple systems in a timed lab environment. It carries significant weight with employers who want proof of practical exploitation skills, but it demands considerably more preparation.
Both CEH and PenTest+ are valid for three years. Renewing CEH requires 120 continuing education credits over that period, while PenTest+ requires 60 continuing education units. The difference in renewal effort is worth factoring in, especially if you hold multiple certifications.
Jobs and Salaries for CEH Holders
CEH holders work across a range of cybersecurity roles. Based on Payscale data from over 2,000 certified professionals, here are the most common job titles and their salary ranges:
- Cyber Security Analyst: $61,000 to $131,000, with an average around $89,900
- Cyber Security Engineer: $86,000 to $164,000, averaging about $119,600
- Security Engineer: $74,000 to $157,000, averaging roughly $107,200
- Penetration Tester: $73,000 to $156,000, averaging about $107,800
- Information Security Analyst: $62,000 to $127,000, averaging around $84,200
- Information Security Manager: $97,000 to $166,000, averaging about $131,700
The wide salary ranges reflect differences in experience, location, industry, and whether you hold additional certifications. Entry-level analysts with a CEH tend to start at the lower end, while engineers and managers with several years of experience and complementary credentials push toward the top. The certification alone won’t land a six-figure role, but paired with hands-on experience, it signals to employers that you understand offensive security techniques and can apply them defensively.
Is CEH Worth It?
CEH makes the most sense if you’re moving into cybersecurity from another IT field, if your employer will cover the training costs, or if you’re targeting roles where the certification is specifically listed as a requirement. Many government agencies and defense contractors include CEH on their list of approved baseline certifications, which makes it especially relevant for those career paths.
If cost is a major factor, PenTest+ delivers comparable credentialing at a fraction of the price. If you already have strong hands-on skills and want a certification that proves it, OSCP carries more weight in technical circles. CEH’s strength is its broad coverage of attack methodologies and its name recognition with hiring managers and HR departments who use certification checklists to screen candidates.