The Certified Blockchain Professional (CBCP) credential โ offered by EC-Council and similar bodies โ validates expertise across blockchain architecture, cryptographic fundamentals, smart contract development, consensus mechanisms, enterprise platforms, and DeFi concepts. It's a technically demanding exam that rewards candidates who can apply blockchain knowledge to real-world scenarios, not just recall definitions.
This page provides a free CBCP practice test PDF you can download and print for offline study. The questions mirror the scope and style of the actual certification exam, covering Bitcoin and Ethereum internals, Solidity smart contract vulnerabilities, Hyperledger Fabric architecture, DeFi primitives, and regulatory considerations. Work through the PDF, check your answers against the key, and then use the online practice tests to build the timed confidence you'll need on exam day.
The PDF questions span the full CBCP exam syllabus. Here is a topic-by-topic breakdown of what you need to know:
Questions in this domain cover distributed ledger technology, the core differences between blockchain and traditional centralised databases, the mechanism behind immutability (cryptographic chaining of blocks), and a high-level overview of consensus algorithm categories. Understanding why decentralisation creates specific trade-offs in performance and trust is a recurring exam theme.
This is one of the most heavily tested domains. Expect questions on SHA-256 hash function properties (deterministic, one-way/pre-image resistant, avalanche effect, fixed-length output), public key cryptography (asymmetric encryption, digital signature creation and verification), and Merkle trees (how they are constructed and how a Merkle proof verifies inclusion without revealing the full dataset). Digital wallet concepts โ private key, public key, and address derivation โ are also tested.
CBCP questions on Bitcoin cover the UTXO model (how inputs and outputs compose a transaction), the mining process (proof of work, hash rate, difficulty adjustment algorithm, block reward and the halving schedule), the mempool and transaction fee market, Bitcoin Script (basic opcodes), confirmation time, and the Lightning Network (payment channels and HTLCs โ Hash Time Locked Contracts).
Key Ethereum topics include the account model vs. Bitcoin's UTXO model, gas and gas limit mechanics, smart contracts (Solidity language basics, ABI, bytecode compilation, EVM execution), the ERC-20 fungible token standard, the ERC-721 NFT standard, and Ethereum 2.0 concepts โ Proof of Stake, validator roles, staking mechanics, and slashing conditions.
The exam tests multiple consensus models in depth: Proof of Work (mining incentives and 51% attack vulnerability), Proof of Stake (validator selection and slashing), Delegated Proof of Stake (voted validators), Proof of Authority (trusted validators in permissioned networks), Practical Byzantine Fault Tolerance (PBFT for enterprise contexts), and Raft consensus. Understanding the trade-offs between security, decentralisation, and throughput for each mechanism is essential.
Solidity questions cover data types (uint, address, bool, mapping, struct), function visibility and state mutability modifiers (view, pure, payable), events and logging for off-chain listeners, function modifiers for access control, inheritance patterns, and โ critically โ common vulnerability classes: reentrancy attacks (the DAO hack pattern), integer overflow/underflow (pre-Solidity 0.8), and access control flaws. Know how each vulnerability works and how it is mitigated.
DeFi questions cover decentralised exchanges (AMM model with constant product formula, liquidity pools, and impermanent loss calculation), lending protocols (collateralised loans, liquidation triggers, collateralisation ratios), stablecoin categories (fiat-backed vs. algorithmic), yield farming mechanics, and the TVL (Total Value Locked) metric as an indicator of protocol health.
Enterprise platform questions focus on Hyperledger Fabric (channels for data privacy, chaincode as smart contracts, orderer nodes, endorsement policies), R3 Corda (states, contracts, flows, notary nodes), Ethereum Enterprise variants (Quorum/Besu), and real-world deployments such as IBM Food Trust for food safety traceability and the Maersk TradeLens supply chain platform.
Application domain questions cover supply chain (provenance tracking, counterfeit prevention), healthcare (EHR interoperability, drug traceability), financial services (cross-border payments, trade finance, tokenised assets), government applications (digital identity, land registry), and electronic voting systems. Understanding which blockchain properties (immutability, transparency, decentralisation) solve which real-world problem is the key to answering these correctly.
This domain covers the tension between GDPR's right to erasure and blockchain immutability, AML and KYC obligations for cryptocurrency exchanges, the FATF Travel Rule (sharing originator/beneficiary data for transfers above a threshold), SEC positions on whether tokens constitute securities, and Central Bank Digital Currencies (CBDCs) โ their design models and policy motivations.
The PDF is the right tool for deep topic review and annotating key concepts, but you also need timed practice under exam conditions. Our CBCP practice test delivers instant feedback on every answer, tracks your performance by domain, and lets you focus repeated attempts on the sections where you're losing marks โ so you walk into the exam knowing exactly where you stand.