CEH v13: Introduction to Ethical Hacking
Table of Contents
Click Here to Return To the Certified Ethical Hacker (CEH v13) Course Page
Introduction to Ethical Hacking opens the EC-Council CEH v13 course. This module covers core security concepts, the cyber kill chain, the five hacking phases, and the legal framework that makes testing lawful. Ethical hacking is legal only with explicit written authorization, so understand the rules before you touch a single system.
An ethical hacker uses the same tools and techniques as an attacker, but with permission and a defensive goal. You find weaknesses first so the organization fixes them before a real adversary strikes.
Core Security Concepts
Every assessment protects the CIA triad.
- Confidentiality keeps data secret from unauthorized parties.
- Integrity keeps data accurate and unaltered.
- Availability keeps systems and data reachable.
You also separate three related terms:
| Term | Meaning |
|---|---|
| Threat | A potential cause of harm |
| Vulnerability | A weakness an attacker exploits |
| Risk | The chance and impact of a threat meeting a vulnerability |
Hacker Types and Attacker Classes
You classify testers and attackers by intent and authorization.
| Type | Authorization | Intent |
|---|---|---|
| White hat | Authorized | Defensive, fixes flaws |
| Black hat | None | Malicious, personal gain |
| Gray hat | Often none | Mixed, discloses after the fact |
Attackers range from low-skill script kiddies to organized nation-states and insider threats.
Frameworks and the Five Phases
Two frameworks structure attacker behavior. The Cyber Kill Chain models an intrusion as a chain from reconnaissance to actions on objectives. MITRE ATT&CK maps real-world tactics and techniques you reference during testing.
The CEH methodology breaks an engagement into five phases:
- Reconnaissance gathers information about the target.
- Scanning probes for live hosts, ports, and services.
- Gaining access exploits a weakness to get in.
- Maintaining access keeps a foothold for continued testing.
- Clearing tracks documents the path and, in a real attack, hides it.
Engagement Types and Legal Rules
You scope an engagement before any testing.
- Black-box testing gives you no inside knowledge.
- White-box testing gives you full documentation and credentials.
- Gray-box testing gives you partial knowledge.
A signed rules of engagement and a defined scope protect both you and the client. Without written authorization, the same actions break laws like the Computer Fraud and Abuse Act. Stay inside scope at all times, because one out-of-scope host turns a test into a crime.
Next Steps
Begin the hands-on work with Footprinting and Reconnaissance . Build your defensive base with the CompTIA Security+ Course and review tips for passing certification exams . Return to the Certified Ethical Hacker (CEH v13) Course .
