Black box testing evaluates security with no prior knowledge of the target — simulating an external attacker who has no inside information. Tests what an outsider could discover and exploit.
Most realistic attack simulation. Time-consuming (must discover everything). Contrast: white box (full knowledge, efficient, finds more vulnerabilities) and gray box (partial knowledge, balanced). Black box tests your real external exposure.