The execution lifecycle of this scanning architecture relies on three distinct phases designed to evade modern Security Information and Event Management (SIEM) platforms.