[2] These different techniques exercise every visible path of the source code to minimize errors and create an error-free environment.

The whole point of white-box testing is the ability to know which line of the code is being executed and being able to identify what the correct output should be.

[4] That can be the source code, requirements, input space descriptions, or one of dozens of types of design models.

[6] The goal of a white-box penetration test is to simulate a malicious insider who has knowledge of and possibly basic credentials for the target system.

For such a penetration test, administrative credentials are typically provided in order to analyse how or which attacks can impact high-privileged accounts.