kiam wrote: » I'm new to certifications, but what exactly about the CEH makes it 'stupid'?
supasecuritybro wrote: » Nothing stupid about it. If you are interested in the world of cyber, I believe its a great foundation of knowledge and should set the groundwork for a life time of learning beyond it. You will not be a proficient ethical hacker but you will be pretty well rounded in the direction you need to become one. The fuss on this site, is that there is new material out, updated exam (without EC-Council stating the change). You just have to get the new material to get yourself ready for the exam. Don't use exam ****, learn the material and try hands on work. Have a good one!
kiam wrote: » Thanks for the reply supasecuritybro I just got started in this field and my employer really focuses on GIAC certifications like GCIA and GCIH, on my way to those probably.
Cyberscum wrote: » That an employer/HR would use this cert as a baseline to get operational or advanced pen testers/security employees.
IronmanX wrote: » I maybe of no help since I wrote my exam in March. I recommend Matt Walker All In One with the Practice tests. Play with the tools. Know WireShark, Nmap (how different Pings work behind the scenes), TCP Flags, Netcat, aircrack suite extremely well. Know your port numbers very well. The back of the Matt Walker book has a list of tools. Know what all them are used for and which tool are better then others. Your going to get questions you are not expecting. As the Matt Walker book says it is kind of a well duhh statement but make sure to eliminate the false answers and you should get it down to two choices.
TechGuru80 wrote: » Heaven forbid that an employer look for a way to determine baseline knowledge. That's like saying you shouldn't have to take the ACT / SAT to get into college.
Cyberscum wrote: » As I stated before, "that an employer would use THIS cert as a baseline for adv pen/security folks." I commend EC on their marketing campaign in establishing the cert. Other than that, they provide nothing compared to other certs available. Standardized testing is a dumb ass idea in the first place. It proves nothing and if you understand test taking methodology you can literally pass any standardized test with little to no effort.
bigdogz wrote: » Cyberscum, Is there any way that you can talk to management to discuss other certs such as SAN's GPEN, or is the "Ethical Hacker" terminology part of the whole issue? I think if you present some info on SANS courses, or other certs and their accreditation, in a professional manner this may help you make a point to add another cert as a substitute.
OctalDump wrote: » How well do you think the GPEN course from SANS would prepare you for the CEH exam? Because maybe "both" is a good answer.
Sch1sm wrote: » The only courseware specifically for v9 is the EC-Councils own which costs $885. https://store.eccouncil.org/product/cehv9-courseware-im People on here keep saying the exam isn't based on any material. If that is the case it's strange that the EC-Council are selling a bunch of unrelated books. I would try and delay your deadline for a few months until other material comes out. If you have no other option I'd say your best chance would be to memorise the AIO book as best as possible and look up some of the new v9 material online and hope the stuff you read covers what the questions will.
BillV_ wrote: » CEH is not supposed to be equivalent to GPEN. They are very different. GPEN has many more similarities to ECSA/LPT than it does CEH. That's not to say that you couldn't take the GPEN course and apply some of that to CEH, but you'll be missing out on a lot of other "fundamental" concepts (i.e., GPEN is more advanced).
IronmanX wrote: » Can you elaborate? The objectives seem very similar to me: GIAC GPEN Certification | Network Penetration Testing Certification Ethical Hacking and Countermeasures Course Outline | EC-Council I'm aware you work/volunteer at EC Council, so it is not like i'm trying to convince you of one being better. I am just genuinely interested on what your(or others) thought process is on this.
BillV_ wrote: » The CEH was built differently from the GPEN. The GPEN is focused specifically on network penetration testing. And it does a good job on this but doesn't go beyond that scope. The CEH is a much broader course with coverage on a lot of different topics. It is more ethical hacking fundamentals across a wide spectrum, whereas GPEN is a bit deeper and narrower in scope. I did the CEH/ECSA/LPT before doing the GPEN back when it was released and, at least at that time, it seemed more comparable to ECSA/LPT. I suspect it's still the same unless something has changed.
Mike7 wrote: » It is now v9. I suggest you use the following materialsCertified Ethical Hacker Assessment | EC-Council
OctalDump wrote: » Yeah, that's almost the impression I got reading the info on their sites and what people were saying about. It is interesting that you say GPEN is narrower in scope, seems like CEH might be a useful prequel to GPEN (or at least reading the CEH books).
Cyberscum wrote: » I took the test and got a 60% with no study thus far. I guess I am not such a bad ass hahah.
E Double U wrote: » I got 62% so I am 2% more badass than you lol.
