Ceh V8 Study Guide
Information and support about the CEH certification. A place to discuss and get advice for the CEH exam from the EC-Council. Also, any learning material to hacking is acceptable here. Rule 1: No Promoting of Selling of Data Dumps. Rule 2: No spamming courses from course providers, unless invited. Rule 3: Keep it civil and supportive, Noobs and Longstanding Pro L33t hA3ker5 are both welcome here. Rule 4: No putting your links behind services such as Adfly.
CEH v9 Study Guide (Oriyano): I chose this book because it was. I'm a week into my studies and halfway through the AIO v8 study guide. Dec 30, 2014 - Hi, Basically I'm done with the training videos and I had the study guide, but I couldn't find it any more. And my subscription is also over.
Rule 5: No URL Shorteners! Related Subs:. Please all read and abide. Discounts just for 10% Off With Coupon Code reddit. I passed my test earlier this morning (edit: score of 88), and as promised, here is my write-up. TLDR: Having a security background from a cert like Sec+ or job experience is very helpful.
A good study guide and Skillset prep (free is fine) are crucial. Know your well-known tools + their output, attack types, and vulnerabilities. My Background I'm a front-end web developer. I've been doing work as a Govt.
Army Study Guide
Contractor for about 7 or 8 years now. I don't have much security background aside from getting my Security+ cert in 2013 for no real reason other than it interested me and would my resume. I took the latest version of Sec+ earlier this year to renew it, and I started my CEH journey because an upcoming contract requires Sec+ and CEH to meet DOD 8570 certification requirements. My Study Plan I went the self-study path, with no bootcamps or anything.
I spent about 3 months preparing at a slower pace - you could easily do it quicker than that. Below I'm listing and rating my sources of information based on how they translated to my exam performance:. CEH v9 Study Guide (Oriyano): I chose this book because it was basically the only explicit v9 study guide. I found it very helpful, but a lot of the information is stuff you'll already know if you have a good foundation (e.g., Sec+). However, a lot of the info matches up with EC-Council's modules, so it's still useful for new and refresher knowledge. Yes; I'd say a study guide of some sort should be at the core of your studies.
SkillSet.com: I did about 1.5 months of free, and 1 month of the Pro subscription. Final readiness score of 104, with exactly 4000 questions answered. The crowd-sourced nature of this site means you'll get a lot of diverse information to fill in the gaps left by study guides, etc., and the new labs are great tools to learn with too. Pro tip: there are a lot of questions on Skillset, and elsewhere for that matter, that allege to be CEH exam questions that may or may not appear on your own test. You could probably easily gather the Skillset ones with some Google hacking techniques you'll learn during your studies. That's all I'll say. Yes; at the very least do the free version.
Quizlet
Don't forget to use the reddit coupon code if you do use pro. CEH v9 Practice Tests (Blockmon): I bought this late in my studies just to get some more work in with the 5 practice exams the book gives you. The exams were pretty helpful, though I did disagree with some questions and answers. You'll be fine without them, but they are helpful to get more practice in. Pre-existing security knowledge: Kind of obvious, but important to mention nonetheless.
A lot of the CEH body of knowledge is stuff you'll see with Security+ and other basic certs. It's definitely a good idea to have some sort of foundation, whether through certs or job experience.
For example, does ethical hacking use bollards? Not technically. Will you still see questions about stuff like that? A good study guide like Oriyano's will give you the foundational information you need (this is all what the reviews call the padding/extra info).
My Exam Experience I finished the whole thing in about 90 minutes, with 60 to answer all the questions, and 30 to review all my answers + the few flagged questions. Overall, I'd say this exam is easier than the latest version of Security+. You could essentially call it Security+ with some questions about specific tools + output, and vulnerabilities, IMO. I know the exam can sound intimidating, and it tends to get played up and made larger than it is, but you shouldn't be scared. This isn't CISSP level stuff. What Should You Know? Here are some things I suggest you highlight in your studies:.
Major tool usage and output. nmap. hping.
netcat. whois / nslookup / dig. Technical concepts.
CIDR notation / subnet masking. XOR operations. Attacks. Attack names, high-level definitions (how it works, how to identify) and defense techniques (e.g., Stored XSS, what is it?
How do you defend against it? Etc.). Major vulnerability (Heartbleed, POODLE, Shellshock) high-level definitions and defense techniques (e.g., Heartbleed = OpenSSL 1.0.1 - 1.0.1f and can expose data such as private keys) Those are just a few key things to know. I recommend browsing Kali's tool list and knowing a lot of those at the basic level. Aside from tools and attack types, you should know your general security principles like defense-in-depth, getting permission before hacking, etc. A lot of this stuff is common sense. That's all the important stuff I can think of to relay.
I'll do my best to answer any questions you guys have. Good luck on your exams! Edit: Wow, thanks for the gold!
It's my first ever!
Prepare for the new Certified Ethical Hacker version 8 exam with this Sybex guide Security professionals remain in high demand. The Certified Ethical Hacker is a one-of-a-kind certification designed to give the candidate a look inside the mind of a hacker.
This study guide provides a concise, easy-to-follow approach that covers all of the exam objectives and includes numerous examples and hands-on exercises. Coverage includes cryptography, footprinting and reconnaissance, scanning networks, enumeration of services, gaining access to a system, Trojans, viruses, worms, covert channels, and much more.
A companion CD includes additional study tools, as well as a copy of BackTrack. The CEH certifies individuals in the specific network security discipline of Ethical Hacking from a vendor-neutral perspective. A CEH is a skilled professional who understands and knows how to look for the weaknesses and vulnerabilities in target systems and uses the same knowledge and tools as a malicious hacker. This book provides a concise, easy to follow approach to this difficult exam. Focusing 100% on the exam objectives, the CEHv8: Certified Ethical Hacker Version 8 Study Guide is designed for those who feel they are ready to attempt this challenging exam.
Ceh V8 Study Guide Pdf
Topics covered include:. Cryptography. Footprinting and reconnaissance. Scanning networks.
Enumeration of Services. Gaining access to a system. Trojans, viruses, worms and covert channels. And more Companion CD will also include additional study tools, including two bonus practice exams, flashcards, and Backtrack, a leading digital forensics and penetration testing software.