Which testing approach uses full knowledge of the target system?

White-box testing is the approach that uses full knowledge of the target system, including source code, design, configurations, and internal environment details. This complete visibility lets you instrument tests to exercise every code path and logic, verify that security controls are implemented correctly, and surface subtle flaws that only appear with full context. With full inside information, you can conduct thorough analysis, validate secure coding practices, and confirm that defenses are correctly configured. By contrast, grey-box testing uses partial knowledge, black-box testing relies on no internal information and focuses on external behavior, and vulnerability scanning automates checks for known weaknesses without testing how the system is actually built.