How is it different?

Let's look at it with a different perspective to get a clearer picture:

Looking at the preceding diagram, we can see that red-teaming involves using every means to achieve the goals. We can summarize the major difference between red-teaming and pentesting as follows:

• Red-teaming involves finding and exploiting only those vulnerabilities that help to achieve our goal, whereas pentesting involves finding and exploiting vulnerabilities in the given scope, which is limited to digital assets
• Red-teaming has an extremely flexible methodology, whereas pentesting has fixed static methods
• During red-teaming, the security teams of the organizations have no information about it, whereas during pentesting, security teams are notified
• Red-teaming attacks can happen 24/7, while pentesting activities are mostly limited to office hours
• Red-teaming is more about measuring the business impact of the vulnerabilities, whereas pentesting is about finding and exploiting vulnerabilities.