CEH in Cape Town
Certified Ethical Hacker — offensive security certification covering penetration testing methodologies and hacking tools.
What is CEH?
The Certified Ethical Hacker (CEH v13) from EC-Council is one of the most recognised offensive security certifications in the world. It validates your ability to think and act like a hacker — legally — covering everything from reconnaissance and exploitation to post-attack forensics. In Cape Town, where financial services, fintech startups, and government contractors are actively hiring security professionals, the CEH signals credibility to employers who need proven penetration testing skills. South Africa's rapid digital growth has outpaced its security talent pool, making Cape Town a particularly strong market for certified ethical hackers looking to move into mid-to-senior security roles.
With an average IT salary of around $30,000 per year in Cape Town, the CEH's $1,199 exam cost looks modest against a potential $15,000 annual salary uplift — a return you could realistically see within the first year. Cape Town's cybersecurity sector is being driven by banking, e-commerce, and cloud adoption, all of which require dedicated security talent. Employers in this market consistently pay a premium for certified professionals because the local talent gap is real. Whether you're negotiating a raise at your current company or positioning yourself for a new role, the CEH gives you a globally validated credential that carries weight with both local and multinational organisations operating out of Cape Town.
Exam details
Prerequisites: 2 years IT security experience or EC-Council official training
12-week study plan
Exam tips
CEH v13 questions are scenario-based — always read them from an attacker's perspective and eliminate answers that are defensive in nature unless the scenario explicitly calls for a response action.
Know your tools cold: EC-Council expects you to identify the correct tool for a given task. Memorise the primary use cases for Nmap, Wireshark, Metasploit, Aircrack-ng, Burp Suite, and John the Ripper.
The exam tests hacking phases in sequence — footprinting, scanning, enumeration, exploitation, post-exploitation. If a question describes a situation, map it to the correct phase first, then select your answer.
Pay close attention to the cryptography and steganography module. These questions are frequently underestimated by candidates but appear consistently in the exam and require memorising algorithm types, key lengths, and use cases.
EC-Council has specific approved answers that sometimes differ from real-world best practice. When in doubt, answer according to the official CEH courseware logic, not what you might actually do on a live engagement.