The Certified Ethical Hacker (CEH) certification from EC-Council remains a widely recognized credential for penetration testing and offensive security roles. Understanding the exam objectives and structuring your preparation around them is the most efficient path to passing. This article breaks down what the exam covers and how to study for it methodically.
CEH Exam Objectives by Domain
The CEH knowledge exam consists of 125 multiple-choice questions to be completed in four hours [5]. EC-Council structures the exam objectives across a set of core domains that reflect the phases of an attack lifecycle. Candidates are expected to demonstrate competence in reconnaissance, scanning and enumeration, system hacking, web application and cloud attacks, cryptography, social engineering, and countermeasure identification [4].
The official exam blueprint weighs each domain differently. Information security fundamentals, reconnaissance, and network scanning typically carry the highest question density. Cloud computing and container attack surfaces have gained increased representation in recent updates, reflecting shifts in enterprise infrastructure [6]. You should review the current EC-Council exam blueprint for exact weightings before scheduling your test.
Knowledge Exam vs. Practical Exam Format
EC-Council now offers two distinct CEH exam paths. The standard knowledge-based exam validates theoretical understanding through scenario-driven multiple-choice questions [4]. The CEH Practical exam is a separate six-hour, hands-on test where candidates must identify attack vectors, perform network scanning, exploit vulnerabilities, and demonstrate applied ethical hacking methods in a proctored lab environment [3].
Security managers evaluating this certification path should note that the practical exam carries significantly more weight in demonstrating real-world capability. For candidates, choosing which path to pursue—or whether to attempt both—should depend on current skill level, lab access, and career goals. The practical exam requires comfort with tools like Nmap, Metasploit, and Burp Suite under time pressure.
Structured Study Plan and Resources
A disciplined study plan should progress through three phases: foundation building, tool proficiency, and exam simulation. The following table outlines a recommended weekly structure for candidates with baseline networking knowledge.
| Phase | Duration | Focus Areas | Activities |
|---|---|---|---|
| Foundation | Weeks 1–3 | All exam domains (theory) | Read official courseware, map each domain to the blueprint |
| Tool Proficiency | Weeks 4–7 | Scanning, exploitation, web apps | Lab exercises on Kali/Parrot Linux, scripted enumeration drills [6] |
| Exam Simulation | Weeks 8–10 | Time management, weak areas | Full-length practice exams, targeted review of missed objectives |
Supplement the EC-Council official training with hands-on labs. Platforms that provide isolated environments for practicing network scanning, vulnerability exploitation, and web application attacks are essential for bridging the gap between theory and execution. For the practical exam specifically, candidates should practice completing full attack chains within strict time constraints [3].
FAQ
How many questions are on the CEH knowledge exam?
The CEH knowledge exam contains 125 multiple-choice questions with a four-hour time limit [4].
Is the CEH practical exam required for certification?
No. The practical exam is an optional add-on. The standard multiple-choice exam satisfies the core certification requirement, though the practical exam demonstrates applied competency that some employers prefer [3].
What tools should I be comfortable with before taking the exam?
Expect hands-on familiarity with Nmap, Metasploit Framework, Burp Suite, Wireshark, and standard Linux command-line utilities. Parrot Linux and Kali Linux are both commonly used environments for preparation [6].
Sources
[5] EC-Council – Certified Ethical Hacker (CEH)
[4] CybersecurityGuide – CEH Certification Overview
[3] MyComputerCareer – The Complete Guide to CEH Certification