- Series: All-in-One
- Hardcover: 395 pages
- Publisher: Mcgraw-Hill Osborne Media; Har/Cdr edition (September 7, 2011)
- Language: English
- ISBN-10: 0071772294
- ISBN-13: 978-0071772297
- Product Dimensions: 7.5 x 1.3 x 9.5 inches
- Shipping Weight: 1.8 pounds
- Average Customer Review: 4.4 out of 5 stars See all reviews (139 customer reviews)
- Amazon Best Sellers Rank: #207,133 in Books (See Top 100 in Books)
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
CEH Certified Ethical Hacker: Exam Guide (All-in-One) Hardcover – September 7, 2011
There is a newer edition of this item:
Featured business titles
Sponsored by McGraw-Hill Learn more.
Customers who bought this item also bought
What other items do customers buy after viewing this item?
Get complete coverage of all the objectives included on the EC-Council's Certified Ethical Hacker exam inside this comprehensive resource. Written by an IT security expert, this authoritative guide covers the vendor-neutral CEH exam in full detail. You'll find learning objectives at the beginning of each chapter, exam tips, practice exam questions, and in-depth explanations. Designed to help you pass the exam with ease, this definitive volume also serves as an essential on-the-job reference.
COVERS ALL EXAM TOPICS, INCLUDING:
- Introduction to ethical hacking
- Reconnaissance and footprinting
- Network scanning
- System hacking
- Evasion techniques
- Social engineering and physical security
- Hacking web servers and applications
- SQL injection
- Viruses, trojans, and other attacks
- Wireless hacking
- Penetration testing
- Two practice exams
- PDF copy of the book
- Bonus appendix with author's recommended tools, sites, and references
Matt Walker, CEHv7, CPTS, CNDA, CCNA, MCSE, has held a wide variety of IT security teaching, writing, and leadership roles, including director of the Network Training Center on Ramstein AB, Germany, and IT security manager for Lockheed Martin at Kennedy Space Center. He is currently a security engineer for Hewlett-Packard.
Browse award-winning titles. See more
If you are a seller for this product, would you like to suggest updates through seller support?
Top Customer Reviews
This book by far was the best resource I used to gain the correct knowledge to pass the exam. However, the material was very focused on passing the exam. I was disappointed to find that the tools used in the book are almost all Windows-based. For the CEH, I used CBTNuggets, Boson ExSim, this book, TotalTester (free d/l with book), and manual pages for tools (nmap, hping, etc). If your goal is to PASS, this book and the TotalTester software is all you really need. If your goal is to have a good knowledge of penetration testing, this book is nowhere near enough. I blame this more on the CEH exam than the book itself.
- Book is easy to read, not a "dry" book like many other cert books
- Material included in book is very close to what is on the exam
- TotalTester software almost identical to the style/type of questions on the CEHv8 exam.
- Almost no discussion of Linux tools
- No real in depth labs - I would have loved to have seen some in depth Metasploit, Nessus, etc. labs in the book. There were some exercises but I would have like to have seen a lot more in depth labs.
- Some minor errors - nothing major and far less than what you see in other IT books. I know some reviews harp on this; however, most IT books have tons of major errors. I didn't see any that really majorly put me off from the book.
Overall, very good book for passing the exam; however, don't expect to read this and actually be a security expert when finished. Again, this is more of a fault against the CEH than the book itself.
Although I lack reviewer Bob's experience, I think the publisher needs to add an errata page for the book on the McGraw Hill web site. There were some errors in the end of chapter practice questions.
Note that I have *a lot* of InfoSec experience--including CISSP and OSCP certifications--but in my opinion, mastery of the material in this book, including the concepts covered in the end-of-chapter questions and ~ 150 sample test questions on the included MasterExam test, *should* allow you to pass the test.
The book is well-written and concise considering the breadth of material the CEHv7 covers.
I recommend this book for anyone pursuing their CEHv7 certification.
The book also comes with a supplemental CD. This includes a practice test engine. My copy was filled with error after error. I would highly recommend taking practice tests from other sources.
I still give THE BOOK 4 stars because the book itself is so helpful. The book errors are minor and does not hurt you in learning what you need. I would give the CD a half star.... yes you can see questions but forget about reliable answers. Book is good, but fire the editor
I've taken both, and both editions are "on target" for v7. In v8, however, I passed again, having one of the "several timed sections on one topic" version of the exam, rather than all questions in one sitting version of exam. You do still need to know the major tools listed: how to use, expected results and how to interpret results.
The reason I drop the 2nd edition to 4 stars (I wish I could give 4.5) is because:
- I did not expect and got blindsided by almost 20% of the exam hitting on PKI/digital certificates/identity management. I will suggest an expansion on PKI, et al to a full chapter. In the meantime, please find a supplemental source to study these before you take your exam.
- There were also a few (<5) questions on a specific "free" testing methodology that self-promotes 6 of its own certifications and related training programs (which of course cost money), and which article Wikipedia yanked in 2011 for spammy self-promotion. I do hope that this addition to v8 gets reconsidered and removed from future versions of the CEH by the EC|Council. I've only seen 2 pages or so on this in two recent books, hardly drawing your attention to it, and not in depth.
- Web security questions require more actual knowledge of securing a web page, as one would obtain from the OWASP project pages, and "hands-on" practice doing so. Please also do supplemental study with OWASP materials.
- There was also one chapter area that was surprising completely missing on my v8 exam.
- Finally, there were no PowerPoint pictures on the exam (a distractor in v7 exam), and more "soft" questions without code samples.
Matt Walker's 2nd edition could be revised to cover these areas, or an addendum posted on a forum such as www.cccure.org. Still, this is an excellent resource, coupled with DeFino. The Gregg book is also a good supplement. Do download the extra online McGraw-Hill LearnKey exam as referenced in the book, and/or the Practice Tests book. Do the same for the online exams mentioned in the other two book sources. With those, plus a PKI study source, and OWASP / hands-on web security, you'll do fine on the exam -- whichever version you receive.