During the Fall 2020 semester, I was a part of the Bradley Red Team. We were tasked with a black-box penetration test on a client, and spent the semester conducting the engagement. The engagement took place as part of the MIS 383, Advanced Ethical Hacking, course.
My duties included scanning and banner grabbing on the client's website, compiling a list of potential IP addresses, running phishing campaigns, and recording all activities done.
Phishing campaigns were done using the GoPhish framework, and I was responsible for both the content of the email, and the landing page it directed to. Emails were given a potential spam score from mail-tester.com before being sent.