🛡️ CEH (Certified Ethical Hacker) Practical Training Guide
A comprehensive, hands-on training guide for preparing for the Certified Ethical Hacker (CEH) certification exam. This repository contains 12 practical modules with real-world exercises using Kali Linux and vulnerable lab environments.
What's Inside?
This guide covers the complete CEH exam syllabus with practical, lab-based exercises that you can perform in a safe, legal environment.
12 Core Modules
| Module | Topic | Tools Covered |
|---|---|---|
| 1️⃣ | Footprinting & Reconnaissance | WHOIS, DNS, theHarvester, Google Dorking |
| 2️⃣ | Scanning & Enumeration | Nmap, NSE scripts, OpenVAS, Nessus |
| 3️⃣ | System Hacking | John the Ripper, Hydra, Metasploit |
| 4️⃣ | Web Application Security | DVWA, SQLMap, Burp Suite, XSS, SQLi |
| 5️⃣ | Network Attacks | Ettercap, Bettercap, Aircrack-ng, MITM |
| 6️⃣ | Social Engineering | Gophish, SET, Credential Harvesting |
| 7️⃣ | Malware & Trojans | msfvenom, Meterpreter, Reverse Shells |
| 8️⃣ | Privilege Escalation | LinPEAS, WinPEAS, SUID exploitation |
| 9️⃣ | Sniffing & Traffic Analysis | Wireshark, tcpdump, Protocol Analysis |
| 🔟 | Denial of Service | hping3, Slowloris, SYN Flood |
| 1️⃣1️⃣ | IDS/Firewall Evasion | Nmap evasion, Payload encoding |
| 1️⃣2️⃣ | Incident Response & Forensics | Log analysis, Volatility, Memory forensics |
Quick Start
Prerequisites
# System Requirements
- Virtualization: VMware or VirtualBox
- RAM: 8GB+ recommended
- Disk: 50GB+ free space
- OS: Kali Linux 2024+
Lab Environment Setup
# 1. Download Kali Linux
wget https://cdimage.kali.org/kali-2024.1/kali-linux-2024.1-installer-amd64.iso
# 2. Download Metasploitable 2 (Primary Target)
wget https://sourceforge.net/projects/metasploitable/files/Metasploitable2/metasploitable-linux-2.0.0.zip
# 3. Start DVWA (Web Application Testing)
docker run -d -p 80:80 vulnerables/web-dvwa
# 4. Verify connectivity
ping <metasploitable_ip>
Learning Path
Recommended Study Schedule
Week 1-2: Modules 1-3 (Reconnaissance, Scanning, System Hacking)
Week 3-4: Modules 4-6 (Web Apps, Network Attacks, Social Engineering)
Week 5-6: Modules 7-9 (Malware, Privilege Escalation, Sniffing)
Week 7-8: Modules 10-12 (DoS, Evasion, Forensics)
Week 9-10: Practice exams and weak area reinforcement
Week 11: Final review and exam registration
Daily Practice Routine (2-3 hours)
- Theory Review (30 min) - Read module documentation
- Hands-On Lab (90 min) - Execute exercises in Kali Linux
- Documentation (30 min) - Document findings and techniques
🛠️ Tools Reference
Essential Kali Linux Tools
# Reconnaissance
nmap, whois, dig, theHarvester, maltego
# Scanning
nmap, nikto, openvas, dirb, gobuster
# Exploitation
metasploit, sqlmap, burpsuite, hydra
# Post-Exploitation
linpeas, winpeas, mimikatz, bloodhound
# Sniffing
wireshark, tcpdump, ettercap, bettercap
# Password Cracking
john, hashcat, hydra, medusa
📖 Documentation
Available Languages
- 🇬🇧 English: CEH_Practical_Training_Guide.md
- 🇭🇺 Hungarian (Magyar): CEH_Gyakorlati_Tananyag.md
Key Sections
- Lab Setup Instructions - Complete environment configuration
- Step-by-Step Exercises - Detailed commands and explanations
- Exam Tips & Strategy - Must-know commands and concepts
- Practice Lab Platforms - HackTheBox, TryHackMe, VulnHub
- Legal & Ethical Guidelines - Responsible disclosure and authorization
⚖️ Legal & Ethical Use
CRITICAL WARNING
This guide is for EDUCATIONAL PURPOSES ONLY. All techniques and tools should be used:
- On your own systems
- In authorized penetration testing engagements (written permission)
- In official lab environments (Metasploitable, DVWA, HackTheBox)
- NEVER on unauthorized systems (illegal and unethical)
EC-Council Code of Ethics
- Integrity - Always act ethically
- Confidentiality - Protect information
- Authorization - Only test with permission
- Disclosure - Responsible vulnerability reporting
- No Harm - Do not cause damage
Unauthorized hacking is a criminal offense punishable by law (Computer Fraud and Abuse Act, Budapest Convention on Cybercrime).
Exam Preparation
CEH Exam Details
- Questions: 125 multiple-choice
- Duration: 4 hours
- Passing Score: 70-75% (varies)
- Cost: ~$1,199 USD (exam only)
- Format: Proctored online or at testing center
Practice Resources
| Platform | Type | Cost | Link |
|---|---|---|---|
| CEH iLabs | Official Labs | Included with course | EC-Council |
| HackTheBox | CTF Platform | Free + VIP | HTB |
| TryHackMe | Guided Learning | Free + Premium | THM |
| PentesterLab | Web Security | Free + Pro | PentesterLab |
| Boson Exams | Practice Tests | $99 | Boson |
Must-Know for Exam
# Top 20 Commands You Must Know
# Nmap
nmap -sS -sV -O -A <target>
nmap --script vuln <target>
# Metasploit
msfconsole
search <keyword>
use exploit/...
set RHOSTS <target>
exploit
# Hydra
hydra -L users.txt -P pass.txt ssh://<target>
# John the Ripper
john --wordlist=rockyou.txt hashes.txt
# SQLMap
sqlmap -u <url> --dbs --dump
# Wireshark Filters
http.request.method == "POST"
tcp.flags.syn == 1
ftp
# Aircrack-ng
airmon-ng start wlan0
airodump-ng wlan0mon
aircrack-ng -w wordlist.txt capture.cap
Project Statistics
- Total Modules: 12
- Exercises: 40+
- Tools Covered: 50+
- Estimated Study Time: 80-100 hours
- Languages: English, Hungarian
🤝 Contributing
Contributions are welcome! Here's how you can help:
- Fork this repository
- Create a feature branch (
git checkout -b feature/new-exercise) - Commit your changes (
git commit -m 'Add new privilege escalation exercise') - Push to the branch (
git push origin feature/new-exercise) - Open a Pull Request
Contribution Ideas
- ✨ Add new exercises or modules
- 🐛 Fix errors or typos
- 📝 Improve documentation
- 🌍 Translate to other languages
- 🎥 Add video demonstrations
- Add CTF writeups
📞 Contact & Support
Author: Miklos Greczi Role: Red Hat SRE / Security Researcher GitHub: @mgreczi LinkedIn: Miklos Greczi
Get Help
- 💬 Questions? Open an Issue
- 🐛 Found a bug? Submit a Bug Report
- Feature request? Create a Feature Request
📜 License
This project is licensed under the MIT License - see the LICENSE file for details.
🌟 Star History
If this guide helped you, please give it a ⭐ on GitHub!
🔗 Related Projects
- OSCP Preparation Guide
- LUMINO MCP Server - Kubernetes observability
- Jira MCP Server - Jira automation
Additional Resources
Recommended Books
- 📖 "CEH Certified Ethical Hacker All-in-One Exam Guide" - Matt Walker
- 📖 "The Web Application Hacker's Handbook" - Dafydd Stuttard
- 📖 "Metasploit: The Penetration Tester's Guide" - David Kennedy
Video Courses
- 🎥 Udemy - "The Complete Ethical Hacking Course" (Heath Adams)
- 🎥 YouTube - "HackerSploit" Channel
- 🎥 Cybrary - "CEH v12 Full Course"
Cheat Sheets
🏆 Acknowledgments
Special thanks to:
- EC-Council - For CEH certification program
- Offensive Security - For Kali Linux
- Rapid7 - For Metasploit Framework
- OWASP - For web security resources
- The InfoSec Community - For sharing knowledge