CEH Practical

Certified Ethical Hacker (Practical)

C|EH (Practical)


About the Certified Ethical Hacker (Practical)

C|EH Practical is a six-hour, rigorous exam that requires you to demonstrate the application of ethical hacking techniques such as threat vector identification, network scanning, OS detection, vulnerability analysis, system hacking, web app hacking, etc. to solve a security audit challenge.

This is the next step after you have attained the highly acclaimed Certified Ethical Hacker certification.

Professionals that possess the C|EH credential will be able to sit for exam that will test them to their limits in unearthing vulnerabilities across major operating systems, databases, and networks.

You will be given limited time, just like in the real world. The exam was developed by a panel of experienced SMEs and includes 20 real-life scenarios with questions designed to validate essential skills required in the ethical hacking domains as outlined in the C|EH program.

It is not a simulated exam but rather, it mimics a real corporate network through the use of live virtual machines, networks, and applications, designed to test your skills. You will be presented with scenarios and will be asked to demonstrate the application of the knowledge acquired in the C|EH course to find solutions to real-life challenges.

The World’s First Ethical Hacking Industry Readiness Assessment That Is 100% Verified, Online, Live, Proctored!

CEH (Practical) Credential Holders Are Proven To Be Able To:

    • Demonstrate the understanding of attack vectors
    • Perform network scanning to identify live and vulnerable machines in a network.
    • Perform OS banner grabbing, service, and user enumeration.
    • Perform system hacking, steganography, steganalysis attacks, and cover tracks.
    • Identify and use viruses, computer worms, and malware to exploit systems.
  • Perform packet sniffing.
  • Conduct a variety of web server and web application attacks including directory traversal, parameter tampering, XSS, etc.
  • Perform SQL injection attacks.
  • Perform different types of cryptography attacks.
  • Perform vulnerability analysis to identify security loopholes in the target organization’s network, communication infrastructure, and end systems etc.

Training Course For the C|EH (Practical)

The preparatory course for this certification is the Certified Ethical Hacker course. While there is no additional course or training required, we strongly recommend that you attempt the C|EH (Practical) exam only if you have attended the current C|EH course/equivalent. The aim of this credential is to help set gifted ethical hacking practitioners apart from the crowd.

About the ExamEligibility CriteriaHow to Schedule the C|EH (Practical) ExamExam Sanctity

About the Exam

  • Exam Title: Certified Ethical Hacker (Practical)
  • Number of Practical Challenges: 20
  • Duration: 6 hours
  • Availability: Aspen – iLabs
  • Test Format: iLabs Cyber Range
  • Passing Score: 70%

Eligibility Criteria

  • Be a C|EH (any version) member in good standing (Your USD 100 application fee will be waived);
  • or Have a minimum of 2 years working experience in InfoSec domain (You will need to pay USD 100 as a non-refundable application fee);
  • or Have any other industry equivalent certifications such as OSCP or GPEN cert (You will need to pay USD 100 as a non-refundable application fee).

Application Process

  • Applicants can apply via the online web form Click here to attempt the certification or purchase an exam voucher from one of our many globally accredited training partners.
  • Important Information for Applicants: On an average, an application processing time would be between 5-10 working days once the verifiers on the application respond to EC-Council’s requests for information.
  • On the application, there is a section for the applicant to list their previous manager,, supervisor, or department lead who will act as their verifier. Please note that EC-Council reaches out to the listed verifier to confirm the applicant’s experience. By making the application, you provide consent to EC-Council to contact your chosen verifier.
  • After the application is submitted, should the certification team require further information, the applicant shall have up to 90 days to provide such information. After that period, should there be  no response from the applicant, the application will be automatically rejected and a new form will have to be submitted.
  • If the application is approved, the applicant will be sent instructions on purchasing the exam kit which cost $550 from EC-Council directly.
  • If application is not approved, the application fee of USD 100 will not be refunded.
  • The approved application is valid for 3 months from the date of approval so the candidate must purchase the official kit within 3 months. After the kit is released, the applicant has 3 months to utilize the codes.
  • Should you require the exam voucher validity to be extended, kindly contact [email protected] before the expiry date. Only valid/ active codes can be extended.
  • An application extension request shall be at the discretion of the Director of Certification

Exam Sanctity

The trust that the industry places in our credentials is very important to us. We see it as our duty to ensure that the holders of this credential are proven hands-on, ethical hackers who are able to perform in the real world to solve real world challenges.

As such, the C|EH| Practical is designed as a hands-on exam that will test the skills of the ethical hacker BEYOND just their knowledge.

This exam is a proctored, practical exam that can last up to 6 hours.

We know that travelling to an exam center can be difficult for many. We are pleased to announce that you can take the C|EH (Practical) exam from the comfort of your home, but you need to be prepared to be proctored by a dedicated EC-Council Proctor certification team under strict supervision.

At A Glance:



  • Greatly enjoy this course as it brought me up-to-date with some of the emerging exploits that I had not been exposed to over the course of my work. The hands-on labs were good and helpful in understand the tool functionality and challenges in defensing against them for an organizations Enterprise network.
    Daniel A. RicciChief Warrant Officer/Cyber Analyst, U.S. Navy
  • The CEH qualification has meant that I have been able to prove my knowledge within the pen-testing arena to colleagues and external contacts. Coupling the EC-Council qualification with my ISC2 and CISCO certifications enables me to show a broad understanding of many of the key areas to which my job role is currently focused. I feel that this enhances the confidence and increases the "peace of mind" in those that receive my services.
    Nicholas Charles Paul HumphreyCEH, Ministry of Defense, UK
  • I have done my CEH training in the year of 2003 and that was the time I have entered Security field and after doing CEH training, it gives lot of value / growth for my Information security career. I would recommend CEH to anyone specializing in information security domain and the course will give you fundamental knowledge about hacking, threats and the measures to defend your organization. I am sure CEH certification would provide great value to cyber security professionals.

    Sushanth Sadanand K.Executive Program Head, Global BFSI Regulatory Compliance & CISO Cyber Security Strategist, GTS

Need Training?

EC-Council’s Official delivery platform includes your study material, iLabs (virtual labs) and gives you the most flexible options for training to fit your busy work schedule!



1. What is the eligibility criteria to apply for the CEH (Practical) exam?

To be eligible to apply to sit for the CEH (Practical) Exam, candidate must either:

  • Be a CEH member in good standing (Your USD100 application fee will be waived);
  • or Have a minimum of 2 years work experience in InfoSec domain (You will need to pay USD100 as a non-refundable application fee);
  • or Have any other industry equivalent certifications such as OSCP or GPEN cert (You will need to pay USD100 as a non-refundable application fee).

2. How long does the application process take?

On an average, application processing time would be between 5-10 working days once the verifiers on the application respond to EC-Council’s requests for information.

3. Is the $100 application fee refundable?

No, the $100 application fee is not refundable

4. For how long is the approved application valid for?

The application process is valid for 3 months from the date of approval.

5. Is the application form mandatory for all test takers?

Yes, the application form is mandatory for all test takers who want to take the exam directly without undergoing training.

6. What is the next step once the application is approved?

Once your application is approved you can proceed to purchase your exam voucher either from EC-Council Online Store or from one of our authorised training channels.

7. What will I receive as part of my purchase towards the CEH (Practical) exam?

You will receive an Aspen Dashboard access code with instructions as part of your purchase towards the CEH (Practical) exam.

8. For how long is the Aspen Dashboard access code valid for?

The Aspen Dashboard access code is valid for 3 months from the date of receipt.

9. What does the Dashboard consist of?

The Dashboard consists of:

  • Detailed Instruction guide
  • Exam scheduling service
  • Exam launching service
  • Exam status

10. What is the structure of the exam?

The candidate is required to complete their pen-testing challenge on the iLabs environment.

11. What is the duration of the exam?

The Exam challenge is a 6 hour session.

12. How much notice is required to book the exam session?

Sessions should be booked at least 3 days in advance of the desired exam date.

Note: All exam sessions are proctored by EC-Council Certification department.

13. What are the important things to keep in mind before I schedule my exam?

Once you are ready to proceed with your exam, please ensure you understand the below:

  • Cancellation requests are to be made 24 hours in advance.
  • Rescheduling is possible 72 hours prior to the exam session
  • Candidate has a grace period of 15 minutes to show up for the exam session.
  • After 3 no-show cases, the candidate will be required to seek special permission from the Director – Certification to proceed with their attempt.
  • FAQs on exam proctoring will be available at

14. What is the retake policy?

Retake exam requests can only be purchased by writing to [email protected], should a candidate fail the exam.

15. Is the CEH (Practical) a part of the EC-Council Continuing Education Scheme?

Yes, the CEH (Practical) is a part of the EC-Council Continuing Education Scheme.