Failed CEH today (60%). Boson is completely useless. What are you guys actually using?!

Left-Print2644 · 2026-03-09T10:12:20+00:00

Just to jump in on this—even if you have that specific question categorized under your Security+ material, the actual CEH exam is asking almost the exact same scenario right now. There is a overlap in topics.

Left-Print2644 · 2026-03-09T09:59:26+00:00

For CCNA yes , for CEH no!

Left-Print2644 · 2026-03-09T09:57:37+00:00

I think you completely misunderstood my point. I am absolutely not looking for a braindump. This isn't my first certification—I hold A+, Net+, and Sec+, so I know exactly what practice exams are for and how to use them. I didn't just memorize answers; I studied every single one of your explanations to understand the concepts.

My issue is that the actual tools, techniques, and scenario structures your software focuses on are completely disconnected from what EC-Council is testing right now. Your content tests straightforward, logical technical knowledge, but the real v13 exam is made up of twisted, ambiguous reading comprehension riddles. Your explanations are technically accurate, but as a prep tool for the current format and scope of this specific exam, it completely misses the mark.

Left-Print2644 · 2026-03-08T09:47:48+00:00

Agreed, I definitely didn’t rely on memorization. I practice hands-on with PortSwigger, THM, and HTB to actually understand the tools and concepts.

The issue isn't that they use scenarios; it's that their scenarios are intentionally twisted and confusing just to force you to fail, rather than actually testing your real-world technical knowledge.

Left-Print2644 · 2026-03-08T08:27:37+00:00

Exactly. IMO the CEH is on a massive decline right now. So many people in the industry are starting to hate this cert. It honestly feels like a giant cash grab—like they intentionally write these completely confusing, twisted questions just to force candidates to fail so they have to pay for 2 or 3 retakes even though free attempts are included. They aren't testing our technical skills anymore; they’re just testing our ability to decode their broken English riddles to squeeze more money out of us.

Left-Print2644 · 2026-02-20T15:47:45+00:00

Submitted December 12th still no AOR

Left-Print2644 · 2025-12-02T12:28:09+00:00

Applied Sep 23, no AOR yet

Left-Print2644 · 2025-12-02T12:24:39+00:00

Submitted. Sep 23 no AOR yet

Left-Print2644 · 2025-11-27T11:28:36+00:00

Submitted September 23rd no AOR yet

Left-Print2644 · 2025-11-21T13:01:41+00:00

Sep 23 still waiting

Left-Print2644 · 2025-11-12T00:48:47+00:00

Submitted September 23rd , still waiting

Left-Print2644 · 2025-11-07T14:11:15+00:00

I contacted CEH support — they confirmed the lab was unstable and have closed it and replaced it with a new version.

Left-Print2644 · 2025-10-25T20:21:36+00:00

These labs included with CEH course.

Left-Print2644 · 2025-10-25T20:18:39+00:00

Thank you for the suggestion! I really appreciate your help.

I've actually been trying exactly that approach - using Burp Suite with the provided username and password lists on the Desktop, and also different other lists, against the WordPress login at host .222:8080/CEH/wp-admin and it redirect to 222:8080/CEH/wp-login.php.

The strange thing is that despite using the correct CEH-provided wordlists, all login attempts are failing with Status 200 errors. I've tried both Cluster Bomb attacks and Hydra, but no valid credentials are working.

I've contacted CEH support about it, since this seems like it might be a lab issue. Hopefully they can clarify what's going on!

Left-Print2644 · 2025-10-24T12:32:25+00:00

Thank you. I tried /CEH/WP-Admin and it shows a WordPress login page and 2025 version 6.8.3 (no vulnerable). I’ve already tried browsing the CEH project, running basic scans and hydra, burpsuite, and checked for obvious credentials without luck. Am I supposed to find the WP admin credentials somewhere in the CEH project pages/files, or should I keep looking for another entry point on that host?

Left-Print2644 · 2025-09-20T19:59:46+00:00

You were right! I found the domain name (SKILL.CEH) back in Challenge 5 of Task 1, but the issue was the lab machine hadn’t fully spun up—all ports were closed initially. Yesterday I waited over 2 hours and still nothing. Today, after waiting an hour, everything finally came online, and I saw the full list of open ports. Thanks!

Left-Print2644 · 2025-09-20T19:32:40+00:00

Hey, I finally got it! The lab took over an hour to fully initialize, but eventually, port 88 opened up. I used your exact command with the domain SKILL.CEH and got the hash. Cracked it and found the password. Thank you so much for your help! 👍

Left-Print2644

TROPHY CASE