Excluding the Metasploit Directory in Your Anti-Virus Solution Before Installing Metasploit

Document created by ckirsch on Jun 20, 2013Last modified by ckirsch on Jun 26, 2013
Version 4Show Document
  • View in full screen mode

Metasploit is a software that tests whether a system is vulnerable to certain security issues. To do this, Metasploit exploits the same vulnerabilities as common malware and hacking software. This is what your anti-virus (AV) program detects and warns you about, so in this sense your anti-virus software is doing its job.


To use Metasploit, you should either exclude the Metasploit directory from your AV scans or install Metasploit on a machine that does not have anti-virus installed (typically a dedicated laptop or virtual machine).


Here is a list of links to descriptions on how to create an exception for the Metasploit directory (typically c:\metasploit) for the most common anti-virus solutions:



Any of these links out of date or need/found a description for a different anti-virus scanner? Please leave a comment on this page to let us  know!