Open Web Application Security Project (OWASP)
The OSSTMM focuses primarily on telecommunications and networking, but is sometimes overly detailed.
The NIST and CAF frameworks are US/UK government frameworks, and thus more likely to be used in their respective countries of origin.
Grey boxing is the most common form of penetration testing. White boxing is generally reserved for software QA.