The CEH (Certified Ethical Hacker) certification from EC-Council involves several cost components: the exam voucher, any training required to qualify for the exam, and optional preparation materials. The total investment varies significantly depending on whether you purchase official EC-Council training, use third-party courses, or qualify through self-study with an eligibility application. Understanding the full cost picture before committing to the CEH pathway helps you budget accurately and choose the most cost-effective route to certification.
The CEH exam voucher typically costs approximately $950 USD when purchased directly from EC-Council. Exam fees are subject to change and may vary based on your country and any current promotions EC-Council is running. The exam is administered through Pearson VUE testing centers or through EC-Council's online proctoring option. The exam itself is 125 multiple-choice questions with a four-hour time limit, covering the CEH exam blueprint across 20 security domains.
The training component adds significantly to the total cost for most candidates. EC-Council requires that CEH exam candidates either complete an official EC-Council training course (delivered by an Authorized Training Center or through EC-Council's own iLearn platform) or submit an eligibility application demonstrating at least two years of work experience in the information security domain. Candidates who do not hold the required experience and have not completed official EC-Council training are not eligible to sit for the CEH exam without applying for eligibility approval first.
Official EC-Council CEH training is sold separately from the exam voucher. Instructor-led training through an Authorized Training Center (ATC) typically ranges from $850 to $1,500 or more depending on the provider, course format, and included materials. The iLearn self-paced online option from EC-Council is generally less expensive than instructor-led training and provides streaming video lessons, lab access through iLabs, and one exam voucher bundled in the package. The bundled iLearn package, which includes both the training and the exam voucher, typically runs between $900 and $1,300 USD, making it a cost-effective option for self-directed learners.
For candidates who qualify through the experience-based eligibility pathway, the cost structure is simpler: you pay the exam voucher fee ($950 approximately) plus the eligibility application fee if submitting a non-training pathway application. The eligibility application fee is typically around $100. This route significantly reduces the total cost for experienced IT security professionals who already have the foundational knowledge covered by the CEH curriculum and can demonstrate two years of qualifying work experience in information security.
Beyond the exam voucher and training fees, candidates should budget for preparation resources that directly improve first-attempt pass rates. EC-Council provides an official exam blueprint listing all 20 domains and their weights, but the breadth of the curriculum โ spanning reconnaissance, exploitation, cryptography, cloud security, and more โ means that structured study materials and full-length timed practice exams are a practical necessity for most candidates. Knowing these costs in advance prevents budget surprises as your exam date approaches.
EC-Council periodically updates the CEH version โ the current version is CEH v13, which updated the curriculum to reflect the latest threats, tools, and attack methodologies. When a new version is released, candidates who are preparing should verify their study materials align with the current version's blueprint, as exam questions are updated to match the new curriculum. EC-Council maintains an official exam blueprint document that lists the topics and their weights โ this document is the most authoritative guide to what the current exam covers and should be the foundation of any preparation strategy.
Practice exam costs are a smaller but real component of CEH preparation expenses. EC-Council sells official practice exams through its website. Third-party practice exam providers including Boson, Transcender, and various online platforms also sell CEH practice questions, typically priced between $40 and $100. Most CEH candidates use some form of practice exam to assess readiness before attempting the real exam, and working through full-length timed practice tests is one of the most reliable indicators of whether you are prepared to pass. Budget for at least one or two practice exam resources as part of your overall preparation cost estimate.
Study guides and reference books are another modest line item for most CEH candidates. EC-Council publishes official study materials, and third-party publishers including Matt Walker and Syngress publish comprehensive CEH study guides that cover the full exam blueprint. Physical or digital study guides typically cost $30 to $60 and provide a structured reading pathway through the CEH curriculum that complements video-based training. Candidates who prefer reading-based learning over video courses find these guides particularly useful for building the systematic knowledge coverage the broad CEH blueprint requires.
When estimating total CEH certification costs, the most accurate approach is to identify your specific eligibility pathway first, then add up the costs of each required component. For the official training pathway: training cost plus exam voucher plus any supplementary practice materials. For the experience pathway: eligibility application fee plus exam voucher plus study and practice materials. Adding a contingency for a potential retake attempt and annual renewal fees over the three-year certification period gives you a complete picture of the total long-term investment in CEH certification, not just the upfront cost to pass the exam.
Candidates have several training options for CEH preparation, each with different costs and trade-offs. EC-Council's official training paths include instructor-led classroom training at an Authorized Training Center, instructor-led online training (live virtual sessions), and iLearn self-paced online training through EC-Council's platform. Each path provides access to the official CEH courseware and lab exercises that EC-Council uses as the basis for the exam.
Third-party training providers โ including online learning platforms like Udemy, Pluralsight, and LinkedIn Learning โ offer CEH preparation courses at significantly lower prices than official EC-Council training, typically ranging from $15 to $200 depending on the platform and any active sales. These third-party courses can be excellent for exam preparation but do not satisfy EC-Council's official training requirement for exam eligibility. Candidates who rely on third-party courses for preparation still need to either qualify through the experience pathway or purchase an official EC-Council training option to become eligible to register for the exam.
The practical lab component of CEH training is one area where official training provides clear value. CEH covers a wide range of hands-on security topics โ port scanning, vulnerability assessment, exploitation techniques, social engineering, cryptography, and more โ and the iLabs environment provided through official EC-Council training gives candidates access to realistic lab scenarios that reinforce the theoretical content. Candidates who prepare through experience-based eligibility without official training may benefit from supplementing their knowledge with hands-on labs through platforms like Hack The Box, TryHackMe, or other cybersecurity lab environments.
Employer sponsorship is available for many IT security professionals pursuing CEH. Many organizations that employ or wish to hire ethical hackers and penetration testers cover or reimburse the cost of CEH certification as part of their professional development programs. Defense contractors, managed security service providers, financial institutions, and healthcare organizations frequently sponsor CEH for their security staff. If your employer has a professional development budget, requesting sponsorship for CEH certification โ including both training and exam fees โ is worth exploring before paying out of pocket.
Government employees and military personnel may have access to additional funding pathways. The U.S. Department of Defense has included CEH on its approved baseline certifications list under DoD Directive 8570/8140, meaning that employees in certain information assurance roles may have their CEH certification costs covered through government training channels. Veterans may be able to use GI Bill benefits for CEH certification through approved education or training providers. Checking with your agency's training coordinator or HR department before paying exam fees ensures you take advantage of any available support.
The iLearn platform from EC-Council provides a flexible self-paced alternative to classroom training that many candidates find sufficient for exam preparation. The iLearn bundle includes streaming video lessons covering the full CEH v13 curriculum, access to EC-Council's iLabs virtual lab environment for hands-on practice, and one exam voucher. The self-paced format allows you to complete the training on your own schedule over a set access period, typically six months from purchase. For working professionals who cannot commit to a fixed classroom schedule, iLearn is often the most practical option for meeting the official training requirement while controlling costs.
When comparing training providers for instructor-led options, look beyond price to consider what is included. Some ATC providers include lab materials, study guides, and a practice exam in their course fee; others offer the instruction only and charge separately for materials and the exam voucher.
Comparing the all-in cost including materials, lab access, the exam voucher, and any retake policies gives a more accurate basis for comparing providers than comparing headline course prices alone. Reading reviews from recent CEH course attendees at a specific ATC provider gives insight into the quality of instruction and whether the course adequately prepares students for the exam.
The timing of your purchase can also affect total cost. EC-Council and many ATCs run discounts during major cybersecurity events such as DEFCON, RSA Conference, and Cybersecurity Awareness Month (October). Monitoring EC-Council's official communications for promotional offers โ or signing up for email alerts from their website โ can save $100 to $300 on training and exam voucher purchases compared to buying at full price during non-promotional periods.
Purchasing EC-Council's iLearn self-paced training with exam voucher included: approximately $900 to $1,300. This is the most streamlined option for candidates who do not have two years of qualifying InfoSec experience. Includes courseware, iLabs access, and one exam attempt.
Candidates with 2+ years of InfoSec work experience submit an eligibility application (~$100 fee) and then purchase the exam voucher (~$950). Total cost approximately $1,050. No training requirement โ but requires documented qualifying work experience in the information security field.
Instructor-led classroom or live virtual training through an EC-Council Authorized Training Center typically runs $850 to $1,500+, with the exam voucher often sold separately. Total investment including the exam can reach $1,800 to $2,500 but includes instructor access and structured learning.
Failed exam candidates must purchase a new exam voucher at the standard fee to retake. CEH certification must be renewed every three years through EC-Council's ECE (EC-Council Continuing Education) program, which requires 120 ECE credits. An annual membership fee applies to maintain active CEH status.
The value of the CEH certification relative to its cost depends largely on your career goals, current employer, and the cybersecurity job market in your region. CEH is one of the most widely recognized vendor-neutral ethical hacking certifications globally and is specifically listed as a required or preferred certification in many government, defense, and enterprise security job postings. For candidates targeting roles in penetration testing, vulnerability assessment, security operations, or ethical hacking, CEH carries meaningful signal to employers โ particularly in sectors where EC-Council's certifications have strong institutional recognition.
Comparing CEH to alternative cybersecurity certifications helps calibrate the cost-benefit analysis. CompTIA PenTest+ is a similar penetration testing certification with lower exam fees (approximately $370) and no mandatory official training requirement. The OSCP (Offensive Security Certified Professional) is more technically rigorous and includes a hands-on 24-hour practical exam, with a package cost typically around $1,500 that includes lab time and the exam. For many technical practitioners, OSCP is more highly valued for hands-on penetration testing roles, while CEH is more broadly recognized in compliance-driven environments and government roles.
The ROI on CEH certification is generally strongest for candidates who are targeting specific roles where the credential is listed as a requirement or strong preference. If your target employers consistently list CEH in their job postings โ particularly in defense contracting, federal agencies, or large enterprises with formal certification requirements โ the investment is well justified by the career access it provides. If you are targeting smaller organizations or highly technical roles where practical skill demonstrations matter more than credentials, alternatives like OSCP or hands-on lab certifications may deliver better return for similar or lower cost.
Salary data for CEH holders is generally positive. CEH-certified professionals often command salaries in the $85,000 to $130,000 range for roles in ethical hacking, penetration testing, and security consulting in the United States, though this varies significantly by location, experience, and employer. The certification itself is not a sufficient qualification for high-paying security roles without accompanying hands-on experience, but it reduces the qualification bar for interview consideration and can accelerate entry into security positions that would otherwise require longer wait times to get an initial interview.
One strategic consideration when evaluating CEH cost versus value is the job posting data in your specific target market. Searching for penetration tester, ethical hacker, or vulnerability analyst positions in your target region and noting how frequently CEH is listed as required or preferred (versus OSCP, GPEN, or CompTIA PenTest+) gives a concrete data point for your decision.
In markets where DoD and government contracts are common โ Northern Virginia, Maryland, Texas, and Colorado in the United States โ CEH appears in job postings with particularly high frequency due to DoD 8570/8140 requirements. In markets dominated by commercial tech companies, OSCP and practical demonstrations may matter more than certification credentials from EC-Council.
The exam failure rate for CEH is not publicly reported by EC-Council, but pass rates for cybersecurity certification exams are generally in the 60-80% range for well-prepared candidates. Planning financially for a potential second attempt โ budgeting for an additional $950 exam voucher โ is prudent, particularly if you are preparing without official training. Candidates who invest in comprehensive preparation materials and complete multiple full-length timed practice exams before their first attempt have meaningfully better pass rates than those who prepare with minimal practice, making the investment in quality preparation resources cost-effective in reducing the likelihood of needing a retake.
Building a broader cybersecurity certification roadmap can also help contextualize the CEH investment. Many security professionals pursue CEH as part of a planned certification sequence โ starting with CompTIA Security+ (for foundational security knowledge), then CEH or CySA+ (for intermediate-level credentials), and eventually CISSP or OSCP (for senior-level or specialized roles). Viewing CEH as one investment in a longer credential-building strategy, rather than a standalone purchase, makes the cost easier to justify and plan for within a multi-year professional development budget.
The CEH exam consists of 125 multiple-choice questions delivered over a 4-hour period. The exam is administered at Pearson VUE testing centers or through EC-Council's online proctoring system. Questions cover the CEH exam blueprint across 20 ethical hacking domains including reconnaissance, network scanning, exploitation, social engineering, cryptography, cloud security, and IoT security. A passing score threshold varies by exam form โ EC-Council uses a scaled scoring methodology.
To sit for the CEH exam, candidates must either: (1) complete an official EC-Council training course through an Authorized Training Center or EC-Council's iLearn platform, or (2) demonstrate at least 2 years of work experience in the information security domain and submit an eligibility application with a $100 processing fee. Self-study alone without official training or qualifying experience is not sufficient โ one of the two eligibility pathways must be satisfied before exam registration is approved.
CEH certification must be renewed every three years through EC-Council's ECE (EC-Council Continuing Education) program. Renewal requires earning 120 ECE credits through approved cybersecurity activities including training, conferences, research, teaching, and other professional development. An annual maintenance fee applies to keep the certification active during the three-year cycle. Candidates who do not renew on time may need to retake the exam to recertify.