Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

HomeCertificationsCEHExam Domains

EC-Council · Official Blueprint · Last reviewed May 2026

CEH Exam Domains & Blueprint

The official EC-Council CEH exam covers 13 domains. The vendor does not publish percentage weights for these domains — treat each as an equal part of the exam blueprint.

Exam OverviewPractice TestStudy GuideSample QuestionsExam Domains

CEH Domain Weight Summary

#DomainWeightQuestions
1Footprinting, Reconnaissance and Scanning
—
155 practice Q
2Enumeration and System Hacking
—
189 practice Q
3Malware, Social Engineering and Network Attacks
—
216 practice Q
4Web Application and Injection Attacks
—
172 practice Q
5Introduction to Ethical Hacking
—
13 practice Q
6Scanning Networks and Enumeration
—
19 practice Q
7Vulnerability Analysis and System Hacking
—
19 practice Q
8Advanced Topics: Wireless, Cloud, IoT, Cryptography
—
129 practice Q
9Footprinting and Reconnaissance
—
18 practice Q
10Network and Web Application Attacks
—
19 practice Q
11Wireless, IoT and Cloud Security
—
24 practice Q
12Cryptography and Malware Analysis
—
20 practice Q
13Social Engineering and Physical Security
—
17 practice Q

Detailed Domain Breakdown

Domain 1: Footprinting, Reconnaissance and Scanning

155 practice questions

Covers the topics, concepts, and applied skills examined under the Footprinting, Reconnaissance and Scanning domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Footprinting, Reconnaissance and Scanning questions

Domain 2: Enumeration and System Hacking

189 practice questions

Covers the topics, concepts, and applied skills examined under the Enumeration and System Hacking domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Enumeration and System Hacking questions

Domain 3: Malware, Social Engineering and Network Attacks

216 practice questions

Covers the topics, concepts, and applied skills examined under the Malware, Social Engineering and Network Attacks domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Malware, Social Engineering and Network Attacks questions

Domain 4: Web Application and Injection Attacks

172 practice questions

Covers the topics, concepts, and applied skills examined under the Web Application and Injection Attacks domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Web Application and Injection Attacks questions

Domain 5: Introduction to Ethical Hacking

13 practice questions

Covers the topics, concepts, and applied skills examined under the Introduction to Ethical Hacking domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Introduction to Ethical Hacking questions

Domain 6: Scanning Networks and Enumeration

19 practice questions

Covers the topics, concepts, and applied skills examined under the Scanning Networks and Enumeration domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Scanning Networks and Enumeration questions

Domain 7: Vulnerability Analysis and System Hacking

19 practice questions

Covers the topics, concepts, and applied skills examined under the Vulnerability Analysis and System Hacking domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Vulnerability Analysis and System Hacking questions

Domain 8: Advanced Topics: Wireless, Cloud, IoT, Cryptography

129 practice questions

Covers the topics, concepts, and applied skills examined under the Advanced Topics: Wireless, Cloud, IoT, Cryptography domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Advanced Topics: Wireless, Cloud, IoT, Cryptography questions

Domain 9: Footprinting and Reconnaissance

18 practice questions

Covers the topics, concepts, and applied skills examined under the Footprinting and Reconnaissance domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Footprinting and Reconnaissance questions

Domain 10: Network and Web Application Attacks

19 practice questions

Covers the topics, concepts, and applied skills examined under the Network and Web Application Attacks domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Network and Web Application Attacks questions

Domain 11: Wireless, IoT and Cloud Security

24 practice questions

Covers the topics, concepts, and applied skills examined under the Wireless, IoT and Cloud Security domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Wireless, IoT and Cloud Security questions

Domain 12: Cryptography and Malware Analysis

20 practice questions

Covers the topics, concepts, and applied skills examined under the Cryptography and Malware Analysis domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Cryptography and Malware Analysis questions

Domain 13: Social Engineering and Physical Security

17 practice questions

Covers the topics, concepts, and applied skills examined under the Social Engineering and Physical Security domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Social Engineering and Physical Security questions

How to Use Domain Weights in Your Study Plan

The vendor does not currently publish percentage weights for these domains, so Courseiva does not rank them by weight.

Work through each domain systematically — cover fundamentals first, then applied and scenario-based topics.

Never skip a domain regardless of perceived importance. Full coverage is required to pass.

Use Courseiva domain analytics to track your accuracy per domain and route extra questions to your weak areas.

Practice every CEH domain

Courseiva tracks your accuracy per domain automatically and routes you toward your weakest areas — no manual configuration needed.

Free Practice TestStart Practising

CEH Concept Guides

CEH Ethical Hacking

The CEH (Certified Ethical Hacker) from EC-Council teaches you to think and act like an attacker — within the boundaries of a legal authorisation.

Related Exam Domains

PT0-002

CompTIA PenTest+

CS0-003

CompTIA CySA+

SY0-701

CompTIA Security+

200-201

CyberOps Associate