Does CEH cert worth it or is there any cert better than it for Pentest profession?

does-ceh-cert-worth-it-or-is-there-any-cert-better-than-it-for-pentest-profession?

As we begin, let me say that camDown is your security solution to protect you and your business from webcam hackers.

Log in or sign up to leave a comment

level 1

Offensive Security and eLearnSecurity are better than CEH.

level 2

This is the way

However the OSCP is leagues more difficult to obtain than the CEH, and eLearnSecurity has smaller more consumable module-like certs.

level 2

I was about to post the same recommendation. Offensive Security is top notch. I have never failed a security certification before due to being extremely studious and technically inclined.

I bombed it. That tells you that it's definitely more for those who really want to dedicate themselves to pen testing.

I would also recommend any of the GIAC Pen testing certifications. Their technical training is among the best and in high demand, caveat is they are a fuck ton more expensive than Offensive Security.

level 1

EC-Council certs aren't worth the paper they're printed on. That company has a terrible reputation for plagiarism on their exams, and generally is not well-regarded across the industry.

Go take an OffSec or SANS course for one of their pentest certs -- you'll learn a bunch more and come out with a much more marketable certification.

level 1

CEH has a very, very poor reputation in the industry. Mostly that's because of lots of sketchy activity from the certifying body.

The OSCP is a much more respected certification. It is a fair bit more difficult though.

level 1

CEH is good for HR filters and not much more. I thought it was easier and less in depth than the security+ to be honest

level 2

Are you serious about the Security+ comparison? I’ll pass the Security+ exam soon and I’m considering CEH for the « HR filters ». Do you think it’ll be much more difficult?

level 1

CEH and everything by EC Council are hot flaming garbage

If someone else is paying then get the SANs certs for pentesting there are several

If you have been doing pentest work for awhile then get OSCP

If you are just starting out then a cert is not going to get your a pentest role, you're going to need some dev ops or network experience

level 1

Anything is better than ceh.

level 1

OSCP is better, but most people will get their CEH first. Usually to get a junior prntest job and work through their OSCP.

level 2

Some places won’t hire people only with CEH.. it isn’t great for getting into pentesting.

level 1

CEH will get you through HR. Any other cert will impress the hiring manager.

Edit: actually have heard good things about PNPT. OSCP will definitely be a better choice. But will require you to know the craft.

level 1

CEH is somewhat of a joke at this point, from what I've gathered

level 1

CEH is a cert to pass recruiting checkboxes. It's not a cert that is going to say "I know what I'm talking about when it comes to pentesting."

level 1

Oof well I feel less bad about barely failing it. I got the 10 questions on wireshark command line wrong…

level 1

CEH is never worth it, its around the same level of knowledge as a Security or Pentest+. I would just get one of those instead and plan to get Offensive Security and eLearnSecurity certs later if your focusing on pentesting.

level 1

I dont see Pentest + mentioned here yet. If one already has the CySA + , is the Pentest + a good stepping stone on your way to OSCP?

level 2

I've heard that it has some good bits but if you are wanting hands on experience then you'll find yourself very underprepared for work in the field. So Pentest+ is potentially good if you need a high level overview e.g cyber sec manager rather than doing actual pentesting.

level 2

I have all 3 (CySA+, PenTest+, and OSCP). Overall, PenTest+ isnt a bad cert. Its a great way to dip your toes into the theoretical side of pentesting. It also covers the non-technical side of pentesting (SoW, scope, etc). I’d definitely start out with PenTest+ after Sec+ then do some HTB, THM, Proving Grounds, and eJPT on the way to OSCP

level 1

Depends where you are in your career and what you are trying to do. This sub hates it, and its quality is pretty low, but it's by far still the most widely recognized pentest related cert. It's fantastic HR fodder if you are junior and starting out.

SANS is excellent if you have your company pay for it, but I couldn't honestly advise someone to spend nearly ten grand out of pocket.

OSCP is really designed for people who have some experience under their belt.

level 1

PnPT by TCM Security. It's new and not as well know as OSCP, but it's cheaper and the training material is based on actual instructional videos.

Lastly, after all of that camDown and I feel your smart friends would agree.