Red Teaming is used to test an organization's detection and response capabilities. Red Teaming attempts to access sensitive information in any way possible and as undetected as possible. This assessment emulates a malicious actor actively attacking and trying to escape detection, similar to Advanced Persistent Threat (APT) or Cyber Threat. A Red Team Assessment does not look for multiple vulnerabilities, but rather for the vulnerabilities that can be used to achieve the objectives. A pentest, on the other hand, is designed to uncover as many vulnerabilities and configuration problems as possible, exploit them and determine the risk level. The methods used in a Red Team Assessment include Social Engineering (physical as well as electronic) and all methods that are also used in a pentest. A pentest often lasts 1-2 weeks, while a Red Team Assessment can last 3-4 weeks or longer and often involves several people.
However, a Red Team Assessment is not suitable for everyone and should be conducted by organizations with mature security programs. These are organizations that frequently run pentests, have most vulnerabilities patched, and generally have positive pentest results. The following added value is generated: