CEH 312-50v8 Exam Information
Certified Ethical Hacker 8
- Exam Details :-
1.Number of Questions: 125
3.Test Duration: 4 hours
4.Test Format: Multiple choice
5.Test Delivery:
Web based via Prometric Prime (Exam Prefix - 312-50)
Vue Testing Center (Exam Prefix - 312-50)
-Exam Code :-
The exam code varies when taken at different testing centers.
1.Exam 312-50: Web based ‘Prometric Prime’ at Accredited Training Centers (ATC).
1.Exam 312-50: Web based ‘Prometric Prime’ at Accredited Training Centers (ATC).
2.Exam 312-50: VUE Testing centers
- Skills Measured :-
The exam 312-50 tests CEH candidates on the following 19 domains.
1. Introduction to Ethical Hacking
2. Footprinting and Reconnaissance
1. Introduction to Ethical Hacking
2. Footprinting and Reconnaissance
4. Enumeration
5. System Hacking
6. Trojans and Backdoors
7. Viruses and Worms
8. Sniffers
9. Social Engineering
10.Denial of Service
11.Session Hijacking
12.Hacking Webservers
13.Hacking Web Applications
14.SQL Injection
15.Hacking Wireless Networks
16.Evading IDS, Firewalls, and Honeypots
17.Buffer Overflow
18.Cryptography
19.Penetration Testing
Complete Outline & Exam Question Percentage and Weight:
Background (4% of Exam and 5 Questions)
A networking technologies (e.g., hardware, infrastructure)
B webtechnologies (e.g., web 2.0, skype)
C systems technologies
D communication protocols
E malware operations
F mobile technologies (e.g., smart phones)
G telecommunication technologies
H backups and archiving (e.g., local, network)
Analysis/Assessment (13% of Exam and 16 Questions)
A data analysis
B systems analysis
C risk assessments
D technical assessment methods
Security (25% of Exam and 31 Questions)
A systems security controls
B application/fileserver
C firewalls
D cryptography
E network security
F physical security
G threat modeling
H verification procedures (e.g.,false positive/negative validation)
I social engineering (human factors manipulation)
J vulnerability scanners
K security policy implications
L privacy/confidentiality (with regard to engagement)
M biometrics
N wireless access technology (e.g., networking, RFID, Blue tooth)
O trusted networks
P vulnerabilities
Tools/Systems/Programs (32% of Exam and 40 Questions)
A network/host based intrusion
B network/wireless sniffers (e.g., WireShark, Airsnort)
C access control mechanisms (e.g., smart cards)
D cryptography techniques (e.g., IPsec, SSL, PGP)
E programming languages (e.g. C++, Java, C#, C)
F scripting languages (e.g., PHP, Java script)
G boundary protection appliances (e.g., DMZ)
H network topologies
I subnetting
J port scanning (e.g., NMAP)
K domain name system (DNS)
L routers/modems/switches
M vulnerability scanner (e.g., Nessus, Retina)
N vulnerability management and protection systems (e.g., Foundstone, Ecora)
O operating environments (e.g., Linux, Windows, Mac)
P antivirus systems and programs
Q log analysis tools
R security models
S exploitation tools
T database structures
Procedures/Methodology (20% of Exam and 25 Questions)
A cryptography
B public key infrastructure (PKI)
C Security Architecture (SA)
D Service Oriented Architecture (SOA)
E information security incident management
F N-tier application design
G TCP/IP networking (e.g., network routing)
H security testing methodology
Regulation/Policy (4% of Exam and 5 Questions)
A security policies
B compliance regulations (e.g., PCI)
B compliance regulations (e.g., PCI)
Ethics (2% of Exam and 3 Questions)
A professional code of conduct
B appropriateness of hacking activities
B appropriateness of hacking activities
0 comments:
Post a Comment
Note: only a member of this blog may post a comment.