+ Reply to Thread
Results 1 to 19 of 19
  1. Junior Member
    Join Date
    Apr 2016
    Posts
    23
    #1

    Default Can I pass CEH with Sybex material only?

    I will do the CEH exam using the following resources:

    1. CEH v9: Certified Ethical Hacker Version 9 Study Guide (http://www.amazon.com/CEH-v9-Certifi...1&keywords=ceh)

    2. CEH v9: Certified Ethical Hacker Version 9 Practice Tests (CEH v9: Certified Ethical Hacker Version 9 Practice Tests: 9781119252153: Computer Science Books @ Amazon.com)

    Which part of the official courseware do I really need?

    Physical Course-ware - $885


    Exam Prep- $139


    DVD tools- $130


    Physical DVD -$199


    i labs- $200

    Bying all the material would be very costly. So do I really need all this stuff or is it enough to just use what I listed under 1. and 2.?
    Reply With Quote Quote  

  2. SS -->
  3. Member thewiz8807's Avatar
    Join Date
    Jun 2015
    Posts
    95

    Certifications
    Network+, CCNA: R&S, CCNA: Security, Security+, ITIL v3 Foundation, CASP
    #2
    Curious to know this as well. Cheers.
    Reply With Quote Quote  

  4. Senior Member kMastaFlash's Avatar
    Join Date
    Aug 2012
    Posts
    897

    Certifications
    A+, Network+,Security+, EMCISA v2, MCP, MTAx2 , CCENT, CCNA R&S,C|EH,C|HFI,Linux+,LPIC-1,E|CSS,E|CES,GPEN,OSWP,Server+,LPT,GCIH,E|CIH
    #3
    Answer to this question: No. Is it a good start yes. However, there are some things the book doesn't cover like ALE and stuff like that. Also one of the main fundamental items EC-Council tests on the CEH methadology, this author screws it up and doesn't use the exact methadology EC-Council wants you to know. I would recommend buying the Matt Walker AIO new guide when it comes out. I know he is publishing a new study guide for CEHv9 I think it comes out in August or September of this year? not sure. But for practice tests, buy the transcender and boson exams. Transcender I found was the closest to the real thing. Boson was great for re-enforcing the concepts. The practice test book is good for on the go prep for keeping concepts fresh in you mind but not for actual exam prep for practice exams as there are types on the book like UPD port instead of UDP. I would say buy the following and you should be good to go:

    1. Sybex CEHv9 book
    2. Matt Walker AIO CEHv9 book
    3. Transcender practice exams CEH
    4. Boson CEHv9 practice exams
    5. Official courseware CEHv9

    Forget the I Labs as they are not worth the $200. You can just download Kali Linux, get some linux vulnerable vms or even metasploitable and a windows test client and be good to go.

    Save the $200 towards the courseware books.
    As for the tools, just know nmap and the different switches, tools like Kismet, Nikto, Metasploit, Cain and Abel and Cryptcat and other tools mentioned in the official courseware and heartbleed, shellshock poodle etc. when they are used not really knowing the utility in depth for exam purposes but good to know in general. Best of luck!
    2017:E|CSA E|CSP,eLearnSecurity Courses 2018: C|ND,ICND2,CCSK,CISSP,CCNA-Security,CSA+,GWAPT 2019: CWNA 2020: LPIC-2
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    963

    Certifications
    C****, C***, C**
    #4
    It depends on your experience.
    Perhaps try the CEH Assessment first.
    Reply With Quote Quote  

  6. Alligator wrestler Moderator Plantwiz's Avatar
    Join Date
    Feb 2005
    Location
    here
    Posts
    4,931

    Certifications
    A+, Net+, iNET+, MCP, CST, CNST, CIW
    #5
    The warning to oneself is as soon as the question, 'how little can I get by with and pass' comes to mind, start thinking about a different career path.

    Why shortchange yourself in your chosen profession?

    Basic thought, the more specialized and sophisticated the certification, the more hands-on time one will need, whether that is in a lab, time in a job, and/or supplemental study materials from a couple reputable sources. No short cuts
    Plantwiz
    _____
    "Grammar and spelling aren't everything, but this is a forum, not a chat room. You have plenty of time to spell out the word "you", and look just a little bit smarter." by Phaideaux

    ***I'll add you can Capitalize the word 'I' to show a little respect for yourself too.

    'i' before 'e' except after 'c'.... weird?
    Reply With Quote Quote  

  7. Member thewiz8807's Avatar
    Join Date
    Jun 2015
    Posts
    95

    Certifications
    Network+, CCNA: R&S, CCNA: Security, Security+, ITIL v3 Foundation, CASP
    #6
    That IS a lot of money to fork out for a certification backed by an organization that's under the microscope right now. Unfortunately for me, it is highly regarded among the organization I intend to work for. So if there's anyone out there who acquired the certification with a book or two, I'd like to hear your opinion on things. Going to take that assessment and see how I do. Just finished my Sec+ and finishing up my CASP, hopefully there's some carry over on the material.
    Reply With Quote Quote  

  8. Junior Member infield13's Avatar
    Join Date
    Apr 2016
    Location
    Minneapolis, MN
    Posts
    17

    Certifications
    Net+, CCENT, CEHv9
    #7
    Just passed CEHv9 today.

    I go with everything kMastaFlash said and Mike7's link for the assessment test.

    I would also advise if this if it is an option. If your local college has a Cybersecurity program and has a class that has the CEH cert bundled in I would look into taking that. That way you go hands on experience with realish life labs. You also get to learn hopefully from an instructor that is either a Pentester or some type of security professional.

    If that is not an option what kmastaflash said is the best bet. Mainly learn the different tools and how to recognize what type of attack is being used (sql injection, xsite scripting etc...)
    Reply With Quote Quote  

  9. Senior Member
    Join Date
    Oct 2013
    Location
    Denver, CO
    Posts
    2,327

    Certifications
    MS: Information Security, CISSP, GCIH, CEH, CHFI, CCNA: S, CCNA: R&S, VCP6-DTM, Linux+, Project+, VCA6-DCV
    #8
    Quote Originally Posted by Mike7 View Post
    It depends on your experience.
    Perhaps try the CEH Assessment first.
    Thanks for that link. I didn't know they had that. I got a better score than I thought I would so at least good to know I'm not totally clueless about this going in.
    Reply With Quote Quote  

  10. Member
    Join Date
    May 2015
    Location
    Bangalore
    Posts
    30

    Certifications
    CISSP, CISM, CEH, CCIE(Qual), CCNP, CCNA, NCSS, NCSE, ITIL V3
    #9
    The bare minimum i suggest is Matt Walker & Boson practice questions with Kali setup at home.Research every answer Boson has.Example : There is a question which asks Control number 11 in certain standard.You do not need to know that much details but introduces to the standard.Learn the terms well.
    Reply With Quote Quote  

  11. Junior Member
    Join Date
    Apr 2016
    Posts
    23
    #10
    I did 84% on the self assessment test. What does this mean for the real exam?
    Reply With Quote Quote  

  12. Member thewiz8807's Avatar
    Join Date
    Jun 2015
    Posts
    95

    Certifications
    Network+, CCNA: R&S, CCNA: Security, Security+, ITIL v3 Foundation, CASP
    #11
    Quote Originally Posted by mika123 View Post
    I did 84% on the self assessment test. What does this mean for the real exam?
    Someone answer this.
    Reply With Quote Quote  

  13. Senior Member
    Join Date
    Mar 2011
    Location
    Chicago
    Posts
    1,315

    Certifications
    CISSP-ISSAP, HCISPP GPEN, GSEC, GSNA, GCIH, E|CH, ECSA, Security+
    #12
    CEH is all based on open source tools. No automagic involved. Relies heavily on NMAP (know the switches), Metasploit, Burb Suite, etc. The exam itself has gotten much easier over the years with few questions only an insider would know about hacking back in the early 2000s (identify which picture indicates a compromised Wi-Fi AP in Seattle, WA) type questions.

    As far as the 84% question. Its a good indication that if you didn't cheat and haven't "tested" the questions before you should be able to achieve at least the 70 ior 72 percent needed to pass.

    - b/eads
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    Jul 2015
    Posts
    451
    #13
    Quote Originally Posted by mika123 View Post
    I did 84% on the self assessment test. What does this mean for the real exam?
    I got 72% on the official EC-Council Pre-assessment test, then got 82% on the actual test. Not sure if I got lucky with the test questions or what, but yeah.
    Reply With Quote Quote  

  15. Explore_Dream_Discover TechGuy215's Avatar
    Join Date
    Jul 2013
    Location
    Philadelphia, PA
    Posts
    379

    Certifications
    CISSP, CEH, CHFI, CCNA:Sec, CCNA:R&S, CWNA, ITILv3, VCA-DCV, LPIC-1, A+, Network+, Security+, Linux+, Project+, And many more...
    #14
    You don't have to purchase any of the EC-Council material or classes if you don't want to.

    I used strictly Sybex along with a home lab setup with Kali and Blackbox, and of course my work experience.

    Just make sure you meet the minimum requirements if you're going the self-study route:

    *2 Years Professional InfoSec Experience
    *Submit a 100 Dollar Non-Refundable Eligibility Application Fee
    *Submit a Eligibility Application Form
    *Get Official Approval
    *Purchase your Exam Voucher (600 for PV)

    BTW I took CEHv8...score was a 92% and took me about 20 minutes.

    Good Luck to you!
    Last edited by TechGuy215; 06-23-2016 at 09:11 PM.
    * Currently pursuing: PhD: Information Security and Information Assurance
    * Certifications: CISSP, CEH, CHFI, CCNA:Sec, CCNA:R&S, CWNA, ITILv3, VCA-DCV, LPIC-1, A+, Network+, Security+, Linux+, Project+, and many more...
    * Degrees: MSc: Cybersecurity and Information Assurance; BSc: Information Technology - Security; AAS: IT Network Systems Administration
    Reply With Quote Quote  

  16. Junior Member
    Join Date
    Apr 2016
    Posts
    23
    #15
    How would you compare the real exam questions to the self assessment test?
    Reply With Quote Quote  

  17. Senior Member danny069's Avatar
    Join Date
    Nov 2012
    Location
    NYC
    Posts
    999

    Certifications
    A+, Security+, ACMT, CASP, CEH, CCNA R&S, A.S. & B.S. Cyber Security Systems/Digital Forensics, M.S. Cyber Security
    #16
    92% in 20 min sounds fishy to me. The self-assessment test is much easier than the real thing.
    I am a Jack of all trades, Master of None
    Reply With Quote Quote  

  18. Junior Member Registered Member
    Join Date
    Dec 2015
    Posts
    1
    #17
    Hi All,

    Firstly, thank you all on this thread for providing guidance on preparation of CEH exam. I am planning to sit for CEH v9 exam soon, which twst method would you recommend Pearson Vue Centre or Exam Voucher to do it at home ?

    thank you in advance
    Reply With Quote Quote  

  19. Junior Member
    Join Date
    Feb 2017
    Posts
    7
    #18

    Default Why buy the EC Council courseware ?

    You can set second hand CEH books on eBay for $2.00, I would start there.

    Warm up to it. Don't go and blow $1000.

    I passed the CEH v9 today.

    My suggestions.

    Understand the following:

    firewalking
    nmap -A and -O commands
    when to use hping
    when a Microsoft O/S will not respond to ICMP
    LM vs NTLM
    password salting
    Rainbow attacks
    RC4, AES, PKI
    process to encrypt message
    use of hashes for integrity
    written auth for pen testing
    understanding impact of Heartbleed and ShellShock (Bashshells and O/S impacted)
    few questions on IPSec (know what layer of OSI)
    some interesting router protocol questions on OSPF
    of course a subnet mask question
    a IP4 vs IP6 question
    know when to use HIPAA
    some WireShark filter commands (4 or 5 of those)
    know TCP three-way hand shake
    a few IPS vs IDS and stateful firewall questions
    MAC flooding and CAM buffer overflow
    know asymmetric vs symmetric advantages
    Reply With Quote Quote  

  20. Junior Member
    Join Date
    Nov 2017
    Location
    Houston
    Posts
    6

    Certifications
    CEH, CISSP, CCSP, Linux+, IBM Qradar, Qualys Vulnerability Specialist, IBM Security etc
    #19
    CEH Practice tests here:
    Very Similar to the exam.


    https://www.udemy.com/certified-ethi...nCode=PASSCEH9
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks