Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Free Resources

Difficulty IndexLearn — Free ChaptersIT GlossaryFree Tools & LabsStudy GuidesCareer RoadmapsBrowse by VendorCisco Command ReferenceCCNA Scenarios

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

HomeCertificationsCEHMock Exam
Free — No Signup RequiredEC-Council· Updated 2026

CEH Free Mock Exam — Full Exam Simulation

Simulate the real Certified Ethical Hacker CEH exam with full-length timed sessions. Questions drawn proportionally from all 13 official blueprint domains — the same mix you'll face on test day.

1020+ in question bank240 min exam · 1.9 min/question13 domainsPass mark: 700/1000
Start 60-question mockStart 120-question mockQuick 30-question drill
Exam OverviewPractice TestStudy GuideExam DomainsMock Exam

Mock Exam

CEH Simulation

Choose your session length:

📝30 QuestionsHalf-length drill🕐60 QuestionsStandard mock💪90 QuestionsExtended session🏆Full 120Full Exam Simulation
1,020+ questions · All free

CEH Exam Stats

Questions125
Duration240 min
Pace1.9 min/Q
Pass mark700/1000
Domains13

Simulate real exam conditions

For the most realistic CEH simulation, start a 60 or 120-question session, put away all notes, set a timer matching the real exam duration (240 minutes), and commit to each answer before moving forward. This trains the time management and decision-making skills the real exam tests.

What this CEH mock exam covers

This free CEH mock exam uses the same question distribution as the real Certified Ethical Hacker CEH exam. Each session draws questions proportionally from all 13 official blueprint domains published by EC-Council, so the topic mix you see accurately reflects what you'll face on test day.

CEH Domain Distribution

Footprinting, Reconnaissance and Scanning

—

Enumeration and System Hacking

—

Malware, Social Engineering and Network Attacks

—

Web Application and Injection Attacks

—

Introduction to Ethical Hacking

—

Scanning Networks and Enumeration

—

Vulnerability Analysis and System Hacking

—

Advanced Topics: Wireless, Cloud, IoT, Cryptography

—

Footprinting and Reconnaissance

—

Network and Web Application Attacks

—

Wireless, IoT and Cloud Security

—

Cryptography and Malware Analysis

—

Social Engineering and Physical Security

—

Every question is written by certified engineers against the 2026 CEH exam objectives. These are original practice questions — not dumps — so you build real understanding rather than memorising answers.

Mock exam vs practice test: what's the difference?

Both the mock exam and practice test use the same question bank. The difference is in how you use them — and when to use each during your CEH study plan.

Practice test — for learning

Use the CEH practice test when you are studying a domain. Answer questions, read every explanation immediately, and build understanding. Do 10–30 questions per domain per session. This is your primary study tool for the first 4 weeks.

Go to practice test →

Mock exam — for simulation

Use the CEH mock exam in the final 1–2 weeks before your test date. Complete a 60 or 120-question session without stopping, manage your time, then review all results at the end. This builds exam-day stamina and surfaces final weak spots.

Start 120-question mock →

Start a mock exam session

📝30 Questions🕐60 Questions💪90 Questions🏆Full 120

Sample CEH mock exam questions

Try these sample questions from the mock exam bank. Commit to an answer before revealing the explanation.

0 / 13
1
Footprinting, Reconnaissance and Scanning

A security analyst runs the following Nmap command: nmap -sS -sV -O -p 22,80,443,3389 192.168.1.0/24. Which of the following BEST describes what this scan will accomplish?

Select an answer to reveal the explanation

2
Enumeration and System Hacking

A security analyst wants to enumerate NetBIOS names on a Windows network. Which built-in Windows command-line tool should they use?

Select an answer to reveal the explanation

3
Malware, Social Engineering and Network Attacks

A security analyst notices a high volume of ICMP Echo Reply packets on the network. The source IPs are varied, but the destination IP is the same. Which type of attack is MOST likely occurring?

Select an answer to reveal the explanation

4
Web Application and Injection Attacks

A security analyst notices that the web application returns different response times when a valid username is submitted versus an invalid one during login. Which type of vulnerability is likely being exploited?

Select an answer to reveal the explanation

5
Introduction to Ethical Hacking

A security analyst suspects that an attacker is scanning their network. They notice a large number of TCP SYN packets being sent to various ports on a single host, but no SYN-ACK responses are returned. Which type of scan is most likely being used?

Select an answer to reveal the explanation

6
Scanning Networks and Enumeration

During a penetration test, you discover that an internal web server responds to ICMP echo requests but does not respond to TCP SYN scans on port 80. However, when you browse to the server's IP using a browser, the web page loads successfully. What is the most likely reason for this behavior?

Select an answer to reveal the explanation

7
Vulnerability Analysis and System Hacking

A penetration tester discovers that a target Windows system has port 445 open and responds to SMB requests. Which tool should the tester use to enumerate users, shares, and OS information from this system?

Select an answer to reveal the explanation

8
Advanced Topics: Wireless, Cloud, IoT, Cryptography

A security analyst captures a large number of unique initialization vectors (IVs) from a wireless network using airodump-ng. Which attack are they MOST likely preparing to execute?

Select an answer to reveal the explanation

9
Footprinting and Reconnaissance

A penetration tester is performing a footprinting exercise on a target company. The tester wants to identify the network range and ISP of the target. Which of the following tools or techniques is MOST appropriate for this purpose?

Select an answer to reveal the explanation

10
Network and Web Application Attacks

During a penetration test, you notice that a web application accepts user input and displays it directly in the browser without sanitization. Which attack is most likely to succeed?

Select an answer to reveal the explanation

11
Wireless, IoT and Cloud Security

A security analyst discovers that an IoT device in a smart building is periodically sending small DNS queries to an external domain known for command-and-control activity. Which security control should be implemented to detect and block such traffic without disrupting legitimate operations?

Select an answer to reveal the explanation

12
Cryptography and Malware Analysis

A security analyst receives an alert about a suspicious file hash. The analyst wants to check if the file is known malware by querying an online database of malware signatures. Which tool should the analyst use?

Select an answer to reveal the explanation

13
Social Engineering and Physical Security

A penetration tester is assessing an organization's physical security. The tester wants to gain unauthorized access to a secured server room that uses a biometric fingerprint scanner. Which of the following techniques would be MOST effective for bypassing the biometric scanner?

Select an answer to reveal the explanation

Answer all 13 questions to see your domain score breakdown

CEH exam-day strategy

Sitting the CEH under real exam conditions is a skill in itself. Candidates who underperform often do so not because of knowledge gaps, but because of poor time management or test anxiety. Use your final mock exam sessions to address both.

Time budget

The CEH exam lasts 240 minutes. Do not spend more than 90 seconds on any single question on the first pass. Flag difficult ones and return to them after completing the rest.

Elimination

On every question, immediately eliminate obviously wrong choices. Even if you are unsure between two options, narrowing to two doubles your odds. Most CEH distractors contain a subtle error — re-read the scenario constraint before committing to the answer that sounds most familiar.

Scenario focus

EC-Council writes many CEH questions as realistic scenarios. Read the final sentence first — it tells you what is being asked. Then re-read the scenario with the question in mind to avoid wasting time on irrelevant details.

Stamina

The real CEH is a mental marathon lasting 240 minutes. In the week before your exam, complete at least two full timed mock sessions on separate days to build concentration stamina. If you cannot stay focused for 240 minutes in practice, you will struggle on exam day.

CEH exam format and scoring

Questions

125

On the real exam

Time limit

240 min

1.9 min per question

Passing score

700/1000

Scaled scoring

The CEH uses scaled scoring — your raw percentage correct is converted to a score out of 1000. Consistently scoring above 80% on mock exams puts you well above the 700/1000 threshold, giving you a buffer for any unexpected question types on the real exam.

CEH mock exam — frequently asked questions

Is this CEH mock exam free?

Yes. Courseiva provides free CEH mock exam questions across all official exam domains. The platform includes timed simulation, per-domain score breakdown, missed-question review, and readiness tracking. No account required — free forever, supported by advertising.

How does the CEH mock exam differ from the practice test?

The practice test is optimised for learning: you see explanations after each question immediately. The mock exam is optimised for simulation: you answer all questions under time pressure and review at the end. Use practice tests for studying and mock exams for benchmarking.

What score should I aim for before booking my CEH exam?

Aim for consistent scores of 80% or above on full-length CEH mock exams before booking your test date. The official passing score of 700/1000 corresponds to roughly 72–75% correct answers, so an 80% buffer accounts for difficulty variation and question styles on the real exam.

How many times should I do a full CEH mock exam?

Most candidates who pass CEH on their first attempt complete 3–5 full-length mock exams in the two weeks before their test. This is enough to identify final weak spots, build stamina, and verify readiness without over-stressing or running out of fresh questions.

Are these CEH mock questions the same as exam dumps?

No — all Courseiva questions are original, written by certified engineers against public EC-Council exam blueprints. Exam dumps are memorised real exam questions shared illegally. Using dumps violates your EC-Council certification agreement and can result in your certification being revoked. Our questions make you genuinely competent, not just test-day lucky.

Free forever · No credit card required

Ready for the real CEH?

Track your mock exam scores, see per-domain analytics, and benchmark readiness across every certification.

Sign Up Free

Free forever · Every certification included

Start Mock Exam

📝30 Questions🕐60 Questions💪90 Questions🏆Full 120

Also Study With

Practice TestFlashcardsStudy GuideExam DomainsAll Questions

Related Exams

PT0-002CS0-003SY0-701200-201

Related Mock Exams

PT0-002

CompTIA PenTest+

CS0-003

CompTIA CySA+

SY0-701

CompTIA Security+

200-201

CyberOps Associate

Browse all certifications →