Is there any formal document about mcafee HIPS exclutions with foundstone?
This one is actually really easy. You simply need to modify the HIPS "trusted network" to list the IP address of the MVM scanner. For detail, see the attached screen shot.
Go to HIPS Policy -> General -> Trusted Networks (Windows) and duplicate or edit your "My Policy" custom policy.
Add the IP address of the MVM scan engine and HIPS will no longer block MVM from scanning.