Use this quick start guide to collect all the information about EXIN EHF Certification exam. This study guide provides a list of objectives and resources that will help you prepare for items on the EXIN Ethical Hacking Foundation (EHF) exam. The Sample Questions will help you identify the type and difficulty level of the questions and the Practice Exams will make you familiar with the format and environment of an exam. You should refer this guide carefully before attempting your actual EXIN Ethical Hacking Foundation certification exam.
The EXIN EHF certification is mainly targeted to those candidates who want to build their career in Data Protection and Security domain. The EXIN Ethical Hacking Foundation exam verifies that the candidate possesses the fundamental knowledge and proven skills in the area of EXIN Ethical Hacking Foundation.
EXIN EHF Exam Summary:
| Exam Name | EXIN Ethical Hacking Foundation |
| Exam Code | EHF |
| Exam Price | $262 (USD) |
| Duration | 60 mins |
| Number of Questions | 40 |
| Passing Score | 65% |
| Schedule Exam | Pearson VUE |
| Sample Questions | EXIN EHF Sample Questions |
| Practice Exam | EXIN EHF Certification Practice Exam |
EXIN Ethical Hacking Foundation Exam Syllabus Topics:
| Topic | Details |
|---|---|
Introduction to Ethical Hacking - 15% |
|
| Hacking Ethics |
The candidate can … - understand the legal implications of hacking. - describe different types of hackers. |
| Basic Principles |
The candidate … - knows the difference between the white and black box test. - can describe different phases in the hacking process. |
Network Sniffing - 10% |
|
| Tools |
The candidate … - knows different kind of tools for Network Sniffing. - knows how to use the most common tools for Network Sniffing. |
| Extracting Information |
The candidate … - knows the function of HTTP headers. - can extract information from HTTP headers. |
Hacking Wireless Networks - 10% |
|
| Preparation |
The candidate can … - find information of his own network adapter. |
| Aircrack-NG |
The candidate … - can explain Airodump-NG. - knows the different kind of functions of tools within Aircrack. - knows what ESSID&BSSID means. |
System Penetration - 35% |
|
| Intel Gathering |
The candidate … - knows how to find information on a target online. - knows how to find information on a target within a network. |
|
Fingerprinting & Vulnerabilities
|
The candidate … - Can scan a target. - knows how to combine tools. |
| Software Tools (Nmap, Metasploit) |
The candidate … - knows how to find vulnerabilities based on scanning results. - knows how to perform manual fingerprinting. |
| Exploitation & Post Exploitation |
The candidate … - knows how to exploit a vulnerability with Metasploit. - knows how to extract system information after exploitation. |
Web-based Hacking - 30% |
|
| Database Attacks |
The candidate … - knows the steps to test for SQLi vulnerabilities. - can explain how to extract data with SQLi. - knows the following functions: CONCAT, LOAD_FILE, UNION, SELECT, @@version, ORDER BY, LIMIT |
| Client Side Attacks |
The candidate … - knows how to create an XSS PoC (Proof of Concept). - knows the basics of session hijacking i/c/w XSS. - knows how to bypass basic XSS filters. |
| Server Side Attacks |
The candidate … - knows how RFI is performed. - knows basic functionalities of php shells such as r57 and c99. - knows the difference between Bind & Back connect shells and what they do. |
To ensure success in EXIN Ethical Hacking Foundation certification exam, we recommend authorized training course, practice test and hands-on experience to prepare for EXIN Ethical Hacking Foundation (EHF) exam.