I would recommend not doing that. If I were you, and you really do want this cert, then Id suggest the "Courseware Only" option on their site. Then I would recommend throwing their course materials in the trash where it belongs and using Boson exam simulator and reading the All in One from Amazon cover to cover. That should prepare you for the exam. If you check my post history I also have some notes that I put on here, There are also much better notes from different redditors on this site, just check the top of all time posts on this subreddit.
I had to get this exam as part of a DoD 8570 Requirement and I have a lot of negative opinions towards the EC Council and the Cert.
This is just my personal opinion, but the two sources I linked will more than prepare you for the exam.
Good luck on your Journey!
First let me just point out that IP address does not = identity, its possible to spoof IP addresses but chances are if someone wanted to do bad things they would use a proxy or VPN.
But on to what you want, what you want to do is called geolocate you can use this to find a rough location (this doesnt always work for example my IP address says im in a town near to where I live).
You can use: https://www.iplocation.net/ I would also suggest https://www.shodan.io it also can locate an IP (roughly) but will also tell you if that IP has ports open and if it has services open.
Dont worry up to right now you have not broken any laws.
After that you need to just sift through the data and I guess compare it with the known address of potential bad person.
Another method is I assume you have Google Analytics? that will have a record of the IP address and will say what "User-Agent" was used. You can then google that user agent and work out what type of device they used (Also I think GA will state if its Desktop or Phone).
I think its very unlikely that you can get the exact location in mostly you will get the local location of the Internet exchange used.
Another method is to go legal and get a lawyer to try to obtain the name of the person tied the the IP address, thats they only method of getting the exact person.
It especially makes things worse if the bad person has a dynamic IP and not static as it will change probably almost everyday.
I recommend if you think they are in your system and you cant get them out, you should hire someone to look into your system and secure it properly and then report it to local LE who can help with contacting the ISP who owns the IP address.
Best of luck.
I would recommend with starting with the CompTIA: Security+ certification before jumping into CEH. I am currently studying for the CEH right now and I would recommend learning the fundamentals of Security. You have basic networking and coding knowledge so thats a good start.
I also recommend this book for the CEH: CEH Certified Ethical Hacker All-in-One Exam Guide, Fifth Edition https://www.amazon.com/dp/1264269943/ref=cm_sw_r_cp_api_glt_fabc_DDF165ZXBTF2EVA8RRHG
I’ve been using the 4th edition (the 5th edition isn’t released) and supplementing with other resources on the web.
Familiarize yourself with the most popular tools a CEH uses daily. Parrot OS or Kali are essential and contain most of the popular tools covered in the CEH. Start playing around with the tools and attempt some exercises. The CEH will have questions with specific commands used by these tools.
https://www.amazon.com/Computer-Networks-Global-Andrew-Tanenbaum/dp/1292374063
Thanks a lot! this is great.
Only one thing, isn't this more updated as a reference for computer networks?
Congrats dear I am very happy for you
I also passed CEH exam last year but I was getting training from koenig solutions.
I would love to share few resources that helped me alot :-
Thanks :)
​
I am going to pass it in December :) I found such book - is it not this one (?) v11 R. Messier:
​
I have bought/had so far:
1. Walker M. CEH Certified Ethical Hacker All-in-One Exam Guide - I started it and I think it helps me to collect my knowledge
I bought Victor Russian guy Udemy course as It was discount. I haven't started yet.
Now I am thinking should I buy Boson Questions as I read they are very good... I don't know if it is worth to spend money if I have already 2 books + Udemy or maybe better safe than sorry:) At the end exam costs much more.
Thanks 🙂
The only book I jave used is this and its highly recommendend 🙂 AIO
I think this book will shape your knowledge more than the exam 😃
It's called out pretty clearly in the description, but it should be version 4. The Boson questions are definitely closer to the exam, and the practice questions at the end of each chapter of the AIO are good as well.
https://www.amazon.com/dp/126045455X/ref=cm_sw_r_sms_apa_i_nsJTDb0J7S9G1
https://www.amazon.com/CEH-v10-EC-Council-Certified-Complete-ebook/dp/B07DBF3NK4
Hey, what do you think of this on Amazon? I saw it only came out just over a month ago.
Which book did you get for your class? I did an Ethical Hacking class last term. The book they had us use was CEH Certified Ethical Hacker All-in-One Exam Guide, Third Edition from McGraw-Hill. It wasn't too bad although I wouldn't use it as my only source for the exam. I'm not planning to take the test until I'm done with school in Feburary. https://www.amazon.com/Certified-Ethical-Hacker-Guide-Third/dp/125983655X/ref=sr_1_5?ie=UTF8&qid=1495033480&sr=8-5&keywords=ceh+v9+certified+ethical+hacker+version+9+study+guide
No lab questions per se; there were scenarios like read this nmap out and choose the best answer. No pick more than 1's. I used Oriyano's guide. Didn't read all of it. Maybe 50%. https://www.amazon.com/CEH-v9-Certified-Ethical-Version/dp/1119252245/ref=sr_1_1?ie=UTF8&qid=1486960385&sr=8-1&keywords=ceh+v9
Congrats!
I am currently looking for study material as well. Just to confirm the CEH V9 study guide is this book?
https://www.amazon.com/CEH-v9-Certified-Ethical-Version/dp/1119252245
what about the Skillset(Basic) - are you referring to just your background and skills?
Thanks so much - any study material is appreciated (anyone)
Yeah it's exactly the same as the CEH. Their website says so. It just takes a USD $200 application fee to apply for it once you get your CEH. Seems a little silly, but I suppose it has a mild purpose.
The exam was tougher than I had expected, but I had no expectation to compare it too... so it was all new to me. I had access to the iLab and iClass material. I used very little of the iLab, as I thought it was kind of pointless by itself. I read through the All-in-One exam book completely. There was another book, but I really disliked the format. The iClass videos were horrible, as the instructor was just reading the slides with little to no REAL explanation of anything. I also used the Boson Exam Environment... which was probably the only reason I passed. The study mode it offers is very useful. You can test your ability and then study what you don't understand.
the test was a lot of application style questions. You need to know more than just a definition. It is honestly fairly difficult to explain. The Boson software was very helpful though, as the questions were very similar in nature. I did a lot of studying on ports, which in my case weren't incredibly useful. They helped in determining the ultimate answer of some questions, but I don't think it was overly useful. I would love to say more, but the NDA kind of makes me scared to share too may specifics. I think if you have access to the Boson software and just about any book, you could pass it.
Well, I just used the official book and a test on android (https://play.google.com/store/apps/details?id=com.pocketprep.ceh). Skillset frustrates me and many questions there are not from the test. You should read and understand the Introduction Chapter very carefully. There are many questions on policies, terms, etc. I also wrote down the main points from Footprinting, Scanning and Enumeration. That helped me remember them better. There were very few crypto questions, no mobile or cloud questions. Main things for me would be: knowing what the main tools of the trade are (NESSUS, etc), what shellshock and heartbleed are, the terms, nmap flags (many questions like "what does this command do?" or "how do you perform a xmas scan?", phases of ethical hacking, what kinds of firewalls, IPSs and IDSs there are, wireless attacks definitely. And read through the viruses, sometimes it's not entirely logical. There was a question about the types.