If your antivirus or endpoint protection software is blocking or quarantining Nmap, you’ll need to whitelist it to allow proper operation of Atera’s Network Discovery feature.

Nmap is a trusted network scanning tool used by Atera to identify devices and services across your network. Some security products may mistakenly flag it as a potential threat due to its network scanning behavior.

This article provides the paths, executables, and file hashes you can safely whitelist in your antivirus or security platform to ensure Nmap runs without interruption.

Important Notes

• Prefer hash exclusions over paths whenever possible for precise and secure whitelisting.
• Limit path exclusions to exact Nmap/Atera folders.
• Combine path and hash exclusions for maximum accuracy.

Hash exclusion

Hash exclusions are the most secure and reliable way to whitelist a file. Each executable or installer has a unique SHA256 hash that identifies it precisely, ensuring that only the exact, trusted file is allowed to run.

Nmap installer

c30dedb3f910b22c0972a52bd737a58ea97910f70796d9afcff51889896b35ef

Nmap.exe

5F856859C2B3D2E35155574018EBD364E78EEB78A81A17A3E94691C83D60CE04

Paths to exclude

Path exclusions are used to allow specific folders or file locations where Nmap and its components are installed. This method is useful when the executable names or temporary file names may vary between systems or versions.

C:\Program Files\Nmap\nmap.exe
C:\Program Files\Nmap\nping.exe
C:\Program Files\Nmap\ncat.exe
C:\Program Files\Nmap\ndiff.exe
C:\Program Files\Nmap\zenmap.exe
C:\Program Files\Nmap\nmap-update.exe
C:\Program Files\Nmap\nmap-service-probes
C:\Program Files\Nmap\nmap-services
C:\Program Files\Nmap\nmap-os-db
C:\Program Files\Nmap\nmap-protocols
C:\Program Files\Nmap\nmap-payloads
C:\Program Files\Nmap\scripts\*.nse
C:\Program Files\Npcap\*
C:\Windows\System32\drivers\npcap.sys
C:\Windows\System32\npcap.dll
C:\Windows\System32\Packet.dll
C:\Windows\System32\wpcap.dll
C:\Windows\System32\drivers\npf.sys