What’s new in CEH v11?
EC-Council will launch the latest version CEH v11 in accordance with their hacker approach. This curriculum will include the most recent advancements in cybersecurity. Domains are intact, but new segments were added and removed. The latest version will include OT Technology, Serverless Computing and WPA3 Encryption. Practically, the OS used in labs is Windows 10, Windows Server2016 and Parrot Security. Windows Server2019 also supports Android and Ubuntu Linux.
Course Objectives for CEH-v11
The exam tests one’s knowledge about core security concepts and validates their ability to assess an organization’s infrastructure in order to identify threats, analyze them and provide remediation to protect against cyber-attacks.
The CEHv11 certification is a great way to gain a deep understanding of:
Cyber kill chain concepts, ethical hacking concepts, overview of information security, security controls and various laws and regulations relating to information security.
Footprinting concepts and methods, and the use of footprinting tools together with countermeasures
Different scanning tools can be used to perform network scans, port discovery, and host and host discovery.
Enumeration techniques now includes NFS enumeration, related tools, DNS cache spying, and DNSSEC zone walking along with the countermeasures
Concepts and types of vulnerability assessment, along with solutions, as well as hands-on experience with industrial tools.
Phases of system hacking: Attack techniques to obtain, escalate and maintain access on victims along with covering tracks.
Malware threats, analysis and fighting of trojans, worms, and viruses like Emotet to prevent data loss. This domain has been given APT and Fileless Malware concepts.
Concepts, techniques, and protection from packet sniffing.
Social engineering concepts and related terminologies such as identity theft, impersonation and insider threats, social engineering techniques and countermeasures
Denial of Service (DoS), Distributed Denial of Service, (DDoS), attacks, use cases, as well as attack and defense tools
Security solutions such as firewall, IPS, honeypots and their evasion are all available to provide protection.
Web server and web-based attacks, methods
SQL injection, hijacking, evasion techniques
Wireless encryption, Bluetooth hacking, and other Bluetooth hacking-related concepts are all possible.
Mobile device management, mobile platform attacks vectors and vulnerabilities related to Android or iOS systems
Operational Technology (OT), essentials, threats and attack methods, as well as attack prevention. The concept of OT is a recent addition.
Recognizing IoT’s vulnerabilities and ensuring safety for IoT devices
Encryption algorithms, Public Key Infrastructure, cryptographic attacks and cryptanalysis
Cloud computing: security threats and security, the essentials of container technology, and serverless computing
CEH v11 will include more labs and new labs for additional topics. Aspirants will have the opportunity to learn new attack techniques and get hands-on experience with a variety of tools.
It is important to note that the exam format, as well as other aspects such the eligibility criteria and duration of the exam, remain the same.