Exam code: 312-50v13
The world's most recognized ethical hacking certification. Learn to think like a hacker to better defend organizations against cyber attacks.
$1,199
The Certified Ethical Hacker (CEH) certification from EC-Council validates your ability to assess computer system security using the same knowledge and tools as malicious hackers, but in a lawful manner.
CEH v12 covers:
The version on the table in 2026 is CEH v13 (exam code 312-50v13). The honest read: most of the underlying domains haven't shifted, but EC-Council folded its AI attack-and-defence track into the standard curriculum rather than keeping it as a separate add-on, which is the only change really worth replanning study time for. The reason CEH still gets bought in 2026 isn't the content — it's the procurement angle. CEH stays on the DoD 8140 Cyber Workforce Qualification Program (the successor to the older 8570 framework), so US federal and cleared-contractor hiring channels keep listing it as a checkbox requirement. EC-Council's own demand reporting and major job-board scrapes both keep it inside the top-listed offensive security credentials globally, especially anywhere compliance is the buyer (PCI-aligned shops, regulated industries, government partners). If your target role is offensive work in a startup, OSCP is a stronger spend; if it's a regulated enterprise or anything DoD-adjacent, CEH still earns its slot.
CEH is designed for:
EC-Council recommends having at least 2 years of IT security work experience.
The CEH exam (312-50v12) includes:
| Experience Level | Recommended Study Time |
|---|---|
| Security+ certified | 8-10 weeks |
| Active security role | 6-8 weeks |
| Limited hands-on experience | 12-16 weeks |
| Aspect | CEH | OSCP |
|---|---|---|
| Format | Multiple choice | Practical hands-on |
| Focus | Breadth of knowledge | Deep technical skills |
| Difficulty | Intermediate | Advanced |
| Recognition | Management/compliance | Technical/red team |
| Cost | ~$1,200 | ~$1,600 |
CEH holders typically see a 31% salary increase. The certification is valued for:
The CEH exam is delivered at Pearson VUE testing centers or via online proctoring through EC-Council's platform. You will face 125 multiple choice questions in a 4-hour window. Each question has four answer options with exactly one correct answer. The exam covers all 20 modules of the CEH v12 curriculum, spanning from reconnaissance to cloud security.
Unlike practical exams, CEH tests your knowledge of tools, techniques, and methodologies through scenario descriptions. You might be shown a network diagram and asked which tool would best accomplish a specific reconnaissance task, or given a code snippet and asked to identify the attack vector it represents. Some questions reference specific tool outputs (Nmap, Wireshark, Metasploit) and expect you to interpret the results.
With 125 questions in 240 minutes, you have just under 2 minutes per question. This is generous compared to most certification exams. Use the first pass to answer questions you are confident about (aim to complete 100 questions in the first 2.5 hours). Flag uncertain questions and return to them. Many CEH questions contain subtle clues in the wording or scenario details that become more obvious on a second reading.
Spend the final 30 to 45 minutes reviewing flagged questions. If you are torn between two answers, consider which one EC-Council would consider "correct" based on their courseware. CEH has a reputation for occasionally favoring their own methodology over industry-standard practices.
The most common mistake is studying only from practice exams without understanding the underlying concepts. CEH questions are not recycled verbatim; they test comprehension of attack methodologies. Another frequent error is over-relying on real-world experience. Some questions have answers that differ from what a practicing pentester would do because the CEH curriculum defines its own framework. When in doubt, answer based on what the CEH courseware teaches, not your field experience.
Candidates also underestimate the breadth of the exam. CEH covers 15+ distinct domains, and skipping even one domain during preparation can cost you the 5 to 8 questions that make the difference between passing and failing.
CEH preparation works best with a layered approach: start with a comprehensive video course to build conceptual understanding across all 20 modules, then reinforce with targeted reading on weak areas, and finish with intensive practice testing. EC-Council's official training is effective but expensive; self-study alternatives exist for those on a budget.
Official EC-Council Materials:
Self-Study Alternatives:
Free Resources:
| Background | Weekly Hours | Duration | Total Hours |
|---|---|---|---|
| Security+ certified | 10 to 15 | 8 to 10 weeks | 100 to 120 |
| Active security role | 10 to 12 | 6 to 8 weeks | 70 to 90 |
| Limited security background | 15 to 20 | 12 to 16 weeks | 200 to 250 |
Hands-on experience is crucial for understanding the tools tested on CEH. Set up a home lab with: Kali Linux (attack machine), Metasploitable 2 or 3 (target), a Windows VM with deliberately vulnerable configurations, and Wireshark for traffic analysis. Practice with Nmap, Metasploit, Burp Suite, SQLMap, John the Ripper, Hashcat, and Aircrack-ng. The exam will test your knowledge of these tools' flags, outputs, and use cases.
CEH is valued differently than OSCP. It is most requested in: government and defense contractor positions (DoD 8570/8140 compliance), corporate security teams where compliance drives hiring decisions, vulnerability assessment roles, security consulting firms that need credentialed staff for client-facing work, and organizations in regulated industries (finance, healthcare, government) where certification requirements are policy-driven.
| Region | Before CEH | After CEH | Increase |
|---|---|---|---|
| United States | $70,000 | $92,000 | +31% |
| European Union | EUR 48,000 | EUR 62,000 | +29% |
| United Kingdom | GBP 42,000 | GBP 55,000 | +31% |
| Remote (global) | $65,000 | $85,000 | +31% |
CEH is one of the most recognized cybersecurity certifications globally, ranking consistently in the top 5 alongside CISSP, OSCP, Security+, and CISM. Recruiters in government and compliance-heavy sectors view CEH as a mandatory checkbox. In purely technical roles (red team, dedicated pentest), OSCP is preferred. CEH shines in roles that blend offensive knowledge with broader security responsibilities: security analysts who perform occasional vulnerability assessments, IT auditors, and consultants who need demonstrable ethical hacking credentials.
CEH typically serves as either a stepping stone or a complement. Common paths include: CEH then OSCP (for deeper offensive specialization), CEH then CySA+ (for a defensive pivot), or CEH then CISSP (for management track). CEH alone positions you for mid-level security roles; combined with another certification, it demonstrates well-rounded capability.
EUR amounts are approximate (EC-Council bills in USD).
| Item | 2026 Cost |
|---|---|
| CEH v13 exam voucher (Pearson VUE testing center) | ~€1,100 ($1,199 USD) |
| CEH v13 exam voucher (ECC remote proctored) | ~€875 ($950 USD) |
| Retake exam voucher | ~€460 ($499 USD) |
| Application fee (no official training) | ~€92 ($100 USD) |
| Self-study book (Matt Walker, latest edition) | ~€37 to €51 ($40 to $55 USD) |
| Practice exams (Boson) | ~€91 ($99 USD) |
| Optional: iLabs standalone access | ~€460 ($499 USD) |
| Optional: Udemy video course | ~€14 to €28 ($15 to $30 USD) |
| Total (self-study, minimal) | ~€1,320 to €1,365 |
| Total (with iLabs and extras) | ~€1,795 to €1,825 |
Note: the $100 application fee applies if you have not completed official EC-Council training and cannot document two years of information security work experience. The fee is collected by EC-Council on top of the voucher cost.
CEH is valid for 3 years. To renew, you must earn 120 ECE (EC-Council Continuing Education) credits over the 3-year cycle and pay an annual membership fee of $80 per year ($240 total). ECE credits can be earned through attending conferences, publishing articles, completing training, or teaching. The renewal cost is modest but the ECE credit requirement is more demanding than CompTIA's CE credits.
With an average salary increase of $22,000 per year and a total investment of $1,400 to $1,900 for self-study, CEH delivers an 1,100% to 1,500% return in the first year. Candidates who work in government contracting may see an even higher return, as CEH is required for certain position levels and its absence can disqualify you entirely from consideration.
EC-Council requires candidates who self-study to apply for exam eligibility, which involves submitting an application form and paying a $100 non-refundable fee. Taking the official EC-Council training waives this requirement. If your employer will pay for the official training ($1,899 to $3,499 depending on the package), this is the most cost-effective path. Some community colleges and training centers offer EC-Council authorized training at reduced rates.
The ECC remote proctoring option (~€875 / $950 USD) is roughly 21% cheaper than the Pearson VUE testing center voucher and is a sensible default if you have a quiet, private space and reliable internet for the four-hour exam.
CEH's eligibility requirement (two years of IT security experience or completion of official training) is a real barrier for career-changers. The Unihackers Cybersecurity Bootcamp creates a credible path around it:
For most graduates, CEH is a realistic credential to pursue six to nine months after the bootcamp, after the Security+ included in the program is completed and a small portfolio is in place.
Before scheduling the CEH exam, confirm you can:
Schedule your exam 10 to 14 days after you start consistently scoring above 80% on practice tests. CEH content is broad, and the gap between studying and testing should be short to prevent knowledge decay across 15+ domains.
CEH covers an enormous breadth of topics, which can feel overwhelming. Focus on understanding the methodology and thought process behind each attack type rather than memorizing every tool flag. On exam day, trust your preparation and remember that 4 hours is more than enough time. Read every question carefully; CEH exams sometimes include negation words ("Which is NOT...") that change the correct answer.
CEH questions frequently test your knowledge of specific tools and their primary functions. You do not need to be an expert at using every tool, but you need to know which tool is appropriate for which task. For example: Nmap for network scanning, Nikto for web server scanning, Maltego for OSINT, Cain & Abel for password attacks, Wireshark for traffic analysis. Create a cheat sheet mapping tools to their use cases and review it repeatedly.
EC-Council updates the exam question bank regularly, so very recent dump sites are unreliable and can actually mislead you. Focus on understanding concepts rather than memorizing specific questions.
CEH offers online proctoring, which many candidates prefer for the convenience and comfort of testing from home. If you choose online proctoring, test early in the morning when your internet connection is least congested. For in-person testing, a weekday morning at a quiet testing center is optimal. Avoid scheduling around holidays or month-end periods when stress levels may be elevated.
CEH is known for occasionally having questions where two answers seem correct. In these cases, choose the answer that aligns with the CEH methodology specifically. If both answers are technically valid, prefer the one that is more directly tied to the module topic being tested. Context clues in the question scenario usually point toward the intended answer.
Average before
€50,000
$70,000
Average after
€66,000
$92,000
Average increase
€16,000 (+31%)
$22,000
Source: EC-Council Salary Survey 2024
The CEH v13 exam voucher is ~€1,100 ($1,199 USD) via Pearson VUE testing centers and approximately ~€875 ($950 USD) via ECC remote proctoring. The retake voucher is ~€460 ($499 USD). If you have not taken official EC-Council training, an additional ~€92 ($100 USD) application fee applies along with proof of two years of information security work experience.
Yes, CEH is intermediate-level while Security+ is entry-level. CEH covers 500+ attack techniques and requires more hands-on security knowledge.
CEH is theory-based (multiple choice) and better for compliance and government-adjacent roles. OSCP is 100% practical and preferred for technical penetration testing positions. Many practitioners do both: CEH for HR filters and OSCP for technical credibility.
Yes, if you need DoD 8570/8140-approved certification, work in compliance-focused environments, or target government-adjacent employers. For pure penetration testing roles in the private sector, OSCP carries more weight.
CEH v13 added AI-driven attack and defence content, expanded cloud security coverage, and updated the practical lab environment. The exam structure (125 questions, 4 hours, 70% to pass) remains consistent. Existing CEH v12 holders are not required to immediately upgrade unless their employer mandates the latest version.
Each retake voucher is ~€460 ($499 USD) via the EC-Council store. Vouchers are valid for one year from issue date. Students enrolled in official CEH AI training receive free retakes based on their package tier. If you did not take official training originally, the ~€92 ($100 USD) application fee may apply again on retake.
A foundational bootcamp covers the prerequisites CEH expects: networking, scanning, enumeration, system hacking basics, web application hacking (OWASP Top 10), and cryptography. The Unihackers Cybersecurity Bootcamp Unit 10 (Penetration Testing and Ethical Hacking) maps directly to multiple CEH domains, while Units 7 and 8 cover the SOC and IR context CEH candidates often lack.
Authoritative sources for exam objectives, study guides, and hands-on labs.
Vendor page covering CEH v13 AI track, training tiers, and exam pricing.
Official domain weights, learning objectives, and exam structure.
Web vulnerability classes featured throughout the CEH web hacking module.
Tactics and techniques mapped to CEH's attack-phase methodology.
Foundational methodology reference for security testing and assessment, complementing CEH's reconnaissance and vulnerability analysis modules.
Step-by-step web testing methodology that aligns with CEH's web application hacking domain.
Free interactive labs covering SQLi, XSS, SSRF and other classes featured in CEH web hacking questions.
Foundation path
CEH (Certified Ethical Hacker) rewards practitioners who already have hands-on defensive or offensive experience. The Unihackers Cybersecurity Bootcamp gives you 360 hours of structured training, CompTIA Security+ as a foundational credential, and the lab depth that makes the next certification realistic to attempt.
OffSecThe most respected hands-on penetration testing certification. Prove your ability to identify vulnerabilities and execute attacks in a controlled environment.
CompTIAThe intermediate penetration testing certification validating hands-on vulnerability assessment and management skills. A practical stepping stone to OSCP.