The Certified Ethical Hacker (CEH) credential is issued by EC-Council and is one of the most widely recognized cybersecurity certifications globally. CEH certification validates an IT professional's knowledge of hacking techniques, network penetration testing methodologies, vulnerability assessment, and the use of security tools across a range of attack scenarios. It's designed for security professionals who want to demonstrate that they understand how attacks work so they can defend systems more effectively.
Online training for the CEH exam has expanded dramatically as cybersecurity demand has grown. You don't need to attend an in-person boot camp or classroom course to prepare โ a full range of self-paced video courses, live online instructor-led sessions, practice lab environments, and hybrid formats are now available from EC-Council and dozens of authorized training partners. The right choice depends on how you learn best, how quickly you need to earn the certification, and your budget.
The CEH exam consists of 125 multiple-choice questions covering 20 knowledge domains. Candidates typically need between 70% and 85% depending on the question pool to pass, though the exact passing threshold is scaled based on the difficulty of the specific exam form administered. The exam is proctored online through EC-Council's testing system and can be taken from home or at a Pearson VUE test center. Many online training packages include or heavily discount the exam voucher, which is a meaningful cost consideration.
Not all IT professionals pursuing CEH have the same background. Network engineers, systems administrators, security analysts, penetration testers, and compliance professionals all pursue CEH for somewhat different reasons. Online training programs vary in how much prior knowledge they assume โ some are designed for professionals with a few years of IT experience, while others start from basics suitable for career changers entering cybersecurity. Choosing training that matches your existing skill level prevents frustration from content that's either too introductory or too advanced.
The 5-year work experience requirement โ or completion of an EC-Council approved training program โ is a prerequisite for CEH eligibility. If you complete an official EC-Council online training course (iLearn or an authorized partner program), the training satisfies the eligibility requirement even without 5 years of work experience. Self-study alone without completing official EC-Council training requires verification of 5 years of relevant security experience and an application fee. For career changers or those earlier in their IT careers, the official training pathway is therefore practically essential, not just educationally beneficial.
The CEH certification is not just for penetration testers. Security operations center (SOC) analysts, cloud security engineers, and incident responders increasingly pursue CEH as a foundational certification that demonstrates broad offensive-security knowledge. Understanding how attackers think and operate is valuable regardless of whether you conduct penetration tests yourself. This cross-functional relevance has expanded the CEH candidate pool significantly beyond its original core audience of ethical hackers and pen testers.
Choosing CEH online training also means thinking about your post-certification plan. CEH is a stepping stone to more specialized certifications โ CPENT (Certified Penetration Testing Professional), ECIH (Certified Incident Handler), and LPT (Licensed Penetration Tester) are all EC-Council advanced credentials that build on CEH foundations. Knowing your career trajectory can help you choose a training provider and format that positions you well for the next certification, not just the one you're studying for now.
The CEH certification is maintained through EC-Council's Continuing Education (ECE) program. Certified professionals earn ECE credits through additional training, conferences, publishing, and other professional development activities, renewing the credential every three years. Online continuing education for CEH maintenance โ webinars, short courses, and EC-Council's own learning events โ is abundantly available, making renewal practical even for busy professionals.
EC-Council's official self-paced online platform. 1 year access to video lectures, course materials, and virtual labs. Best for professionals with flexible schedules.
Instructor-led online classes in real time via virtual classroom. Scheduled cohorts, Q&A, and interaction. Best for learners who prefer structure and direct instruction.
Intensive 5โ7 day live training (online or hybrid). Covers the full syllabus rapidly. Best for professionals who need to earn CEH quickly and can dedicate full-time study.
Coursera, Udemy, CBT Nuggets, Cybrary, SANS, and others offer CEH prep content. Lower cost but may not satisfy EC-Council's official training requirement.
EC-Council and authorized partners provide tailored online training for teams and enterprise clients. Volume licensing available for security teams certifying multiple members.
EC-Council's own online training platform, Aspen (formerly iLearn), is the primary official pathway for CEH self-paced study. The Aspen platform provides 12 months of access to the official CEH courseware โ 40 hours of video lectures delivered by EC-Council instructors, the official e-courseware (the same material used in classroom training), access to cyber labs for hands-on practice, and exam preparation resources.
The platform tracks progress, allows bookmarking, and can be accessed from any device. It does not expire in weeks like a bootcamp โ you have a full year to complete the material and schedule your exam at your own pace.
The official CEH iClass program delivers the same courseware through live online sessions with an EC-Council certified instructor. iClass runs on a scheduled basis โ cohorts begin at specific dates, classes meet for set hours, and instruction happens in real time through a virtual classroom environment. This format suits learners who want interaction and accountability but can't travel to an in-person venue. iClass includes the same hands-on cyber labs as iLearn and typically includes the exam voucher. The live format also allows learners to ask questions during training rather than relying entirely on the recorded material.
EC-Council also offers an optional Cyber Range โ a cloud-based lab environment where learners practice attack and defense techniques against simulated networks. The Cyber Range provides a legally safe environment to execute ethical hacking techniques against realistic targets, which is critical given that using real-world techniques without authorization is illegal regardless of intent. Lab time is often cited by experienced CEH candidates as the most valuable part of training beyond the theoretical content.
For teams and enterprises, EC-Council offers training through authorized training centers and corporate licensing arrangements. Many security consulting firms, managed security service providers, and large enterprise IT departments send groups of employees through CEH as a team-building and compliance initiative. Custom schedules, private cohorts, and tailored delivery can be negotiated through EC-Council's enterprise sales team. Government and defense contractors pursuing CMMC compliance or DoD 8570 role requirements are a significant portion of the corporate training market for CEH.
EC-Council also maintains an official practice exam platform called CodeRed, which offers realistic CEH practice questions in a format closely aligned with the actual exam interface. CodeRed access is typically included with official EC-Council training bundles and can also be purchased separately. Using the same platform and question style as the actual exam during preparation reduces test-day anxiety about navigating unfamiliar software, and the question bank is updated regularly to reflect the current exam version.
The official CEH courseware covers 20 domains including information security threats and attack vectors, network scanning, system hacking, sniffing, social engineering, denial-of-service attacks, session hijacking, evading IDS and firewalls, SQL injection, cryptography, and cloud computing security. Each domain in the official training maps directly to questions in the exam, so candidates who complete the official material have direct alignment between what they studied and what they'll be tested on โ a major advantage over fragmented self-study from third-party sources.
Beyond EC-Council's own platforms, a large market of third-party online training providers covers CEH content. The key distinction is that only EC-Council official training (through Aspen/iLearn, iClass, or an authorized training partner) satisfies the training requirement that substitutes for the 5-year work experience prerequisite. Third-party content from Coursera, Udemy, CBT Nuggets, or similar platforms can be excellent supplemental preparation but does not satisfy the eligibility requirement on its own.
That said, third-party platforms often provide excellent value for experienced IT professionals who already qualify based on work experience. CBT Nuggets and Cybrary both offer comprehensive CEH video content at subscription rates that cost far less than official training. Udemy courses frequently go on sale for under $20 and cover the CEH knowledge domains in detail.
These can be useful as a cost-effective first pass through the material, after which candidates determine whether they want to pay for official training and the associated lab access. The ceh practice test resources available online โ both on this site and through official EC-Council practice exam channels โ are essential preparation regardless of which training format you choose.
SANS Institute offers related cybersecurity courses (particularly GPEN and SEC560) that overlap significantly with CEH content but lead to different certifications. Some professionals pursue SANS training and then sit for CEH without separate CEH-specific training, arguing that the SANS content is more rigorous and practical. The CEH exam's multiple-choice format differs from SANS's practical certification format, so additional CEH-specific practice with the question format is still valuable even for SANS alumni. SANS training is significantly more expensive than CEH training but carries substantial prestige in the penetration testing community.
Online training course options from Pluralsight, LinkedIn Learning, and similar platforms also cover CEH-related topics, though not always with CEH-specific alignment. These can be valuable for building foundational skills in networking, operating systems, scripting, and security concepts before undertaking CEH-specific training. Professionals newer to IT who want to build background before diving into CEH might use these as preparatory resources before committing to a more CEH-specific program.
Online CEH bootcamps from providers like Firebrand, New Horizons, and Global Knowledge offer intensive formats delivered entirely virtually. These programs typically run 5โ7 consecutive days of all-day online instruction โ demanding but efficient. They're designed for professionals who can take a week off from their day job to focus entirely on preparation and want to be exam-ready at the end of the week. Many bootcamp providers include exam vouchers, study materials, and retake guarantees. The tradeoff is intensity: the rapid pace means content that a self-paced learner might absorb over several months is compressed into a single week.
Community resources also supplement paid online training for CEH. Reddit's r/CEH and r/netsec communities contain discussions from recent exam takers about which topics appeared frequently and which study resources were most valuable. TryHackMe and Hack The Box both offer free and paid interactive labs covering skills directly relevant to CEH domains, particularly reconnaissance, exploitation, and post-exploitation techniques. These gamified learning platforms have become popular CEH preparation supplements because they build practical skills in legally safe environments at lower cost than official lab access.
Best for professionals with unpredictable schedules who need flexibility. 12-month access to EC-Council Aspen. Official training credit for exam eligibility. Includes video lectures, e-courseware, and cyber labs. Requires self-discipline to maintain momentum without scheduled deadlines. Exam voucher typically sold separately unless bundled. Cost: $850โ$1,200.
Best for learners who prefer structured instruction and direct interaction. Real-time sessions with EC-Council instructor. Official training credit for eligibility. Includes lab access and courseware. Scheduled cohorts provide built-in accountability. Exam voucher often included. Cost: $1,200โ$2,000. Duration: typically 5 days of online sessions spread across 1โ2 weeks.
Best for professionals who can commit a full week and want to be exam-ready fastest. All-day online sessions for 5โ7 consecutive days. Many include exam voucher, materials, and retake guarantee. High intensity โ not suitable for those who can't step away from work. Varies by provider on whether official EC-Council training credit is included. Cost: $1,500โ$2,500.
The cost of CEH online training varies significantly by format and provider. EC-Council's official iLearn self-paced training is typically priced around $850โ$1,200 for the platform access alone, with the exam voucher (which costs $950 at list price) sold separately or bundled at a discount. Official iClass instructor-led training typically runs $1,500โ$2,000 inclusive of materials and often the voucher. Third-party online courses range from $15 (Udemy sale pricing) to $500+ per year (Pluralsight, CBT Nuggets subscriptions), but these don't include the exam fee.
The exam voucher is often the largest single cost in CEH preparation. At $950 list price from EC-Council's direct channel, the voucher alone represents a significant investment. Many authorized training providers offer exam voucher bundles that reduce the effective per-voucher cost when paired with training. Candidates who pass on the first attempt and don't need retakes see the best value from these bundles. EC-Council's practice-exam-included packages can help ensure first-time pass rates.
Employer sponsorship is common in cybersecurity. Many companies actively pay for CEH training and exam vouchers for security team members, particularly where the certification satisfies a job requirement or government contract specification. The DoD 8570 framework designates CEH as an approved certification for several IA roles, making it directly relevant to defense contractors and government IT personnel. Professionals in organizations with training budgets should inquire about reimbursement before paying out of pocket.
When budgeting for CEH online training, also account for the application fee ($100) that EC-Council charges if you do not complete official training and are applying based on work experience instead. This fee plus the exam voucher cost ($950) can actually exceed the cost of an official training package that includes the voucher โ making official training an economically rational choice even for eligible candidates who theoretically don't need it for eligibility purposes. Running the math specific to your situation before committing to either pathway is worth doing carefully.
After completing online CEH training, effective exam preparation typically includes a combination of domain review using the official courseware, practice questions using EC-Council's CodeRed or third-party CEH question banks, and a final review of the domains where practice scores are weakest. Most candidates benefit from scheduling the exam within 2โ4 weeks of completing training to capitalize on knowledge retention while it's fresh. Postponing the exam significantly after training completion often means needing to review material again before sitting.
Candidates who don't pass on the first attempt can retake the exam after 14 days. After a second failed attempt, the waiting period extends to 30 days, and additional retakes require waiting 60+ days with application review. Purchasing a training package with a retake voucher bundled mitigates the financial risk of the first-attempt failure scenario and is worth factoring into the total cost comparison between online training options.
International candidates pursuing CEH online training should also verify that the certification is recognized in their target job market. CEH holds strong recognition in the United States, United Kingdom, Australia, UAE, and India โ markets with large cybersecurity hiring ecosystems. In some regions, local certifications or government-specific cybersecurity credentials may be required alongside or instead of CEH for certain roles. Researching job postings in your target location before investing in training confirms that CEH will be valued by the employers you're aiming to work with.