**Network scanning:** Identifying live hosts, open ports, and running services (tools: Nmap, Masscan) - **Vulnerability scanning:** Identifying known vulnerabilities in discovered services (tools: Nessus, OpenVAS, Qualys) - **Web application scanning:** Identifying web-specific vulnerabilities like