Site Assessment

Know exactly where every site stands.

Connect to any WordPress site and run a comprehensive analysis across 9 categories. BlockForge generates a professional report with an A–F grade, actionable findings, and shareable links — in under 60 seconds. Read-only. Zero risk.

Start free Built for agencies

The Challenge

You can’t fix what you can’t see.

Hidden Vulnerabilities

Outdated plugins with known CVEs, misconfigured permissions, exposed debug logs — most site owners have no idea these issues exist until something breaks or gets exploited. Manual audits take hours and miss things.

No Standardized Reporting

Agencies pitch new clients with vague statements about “security concerns.” Without a professional, data-backed report, it is nearly impossible to quantify the state of a WordPress site in a way that non-technical stakeholders understand.

Assessment Fatigue

Managing dozens of client sites means checking plugins, PHP versions, SSL certs, backups, and core integrity — repeatedly. Without automation, critical issues slip through the cracks and only surface when it is too late.

How It Works

9 categories. One comprehensive grade.

BlockForge analyzes every WordPress site across nine critical categories with weighted scoring. Each category receives its own score, and a combined grade from A to F gives you an instant overview. The entire assessment runs read-only — no changes to the site, no automated jobs, no risk.

  • Security — File permissions, exposed endpoints, debug settings, user enumeration
  • Plugins — Version checks, known vulnerabilities (WPScan API), inactive/abandoned plugins
  • SSL — Certificate validity, mixed content, HSTS headers, protocol version
  • WordPress Core — Version currency, auto-update configuration, file integrity
  • PHP — Version, EOL status, memory limit, execution time, error reporting
  • Theme — Update status, child theme usage, modification detection
  • Performance — Caching, object cache, page size, request count
  • Backup — Backup plugin detection, schedule verification, last backup age
  • Database — Table overhead, autoloaded data, transients, revisions
Site Assessment Report
Grade B
B 78/100

acme-agency.com

WordPress 6.5 · PHP 8.2 · 14 plugins

92

Security

65

Plugins

100

SSL

80

Core

85

PHP

40

Backup

Fail No backup plugin detected
Warn 3 plugins have updates available
Pass Core files intact, no modifications
PDF Export Shareable Link Promote
Assessment Workflow

Connect Site

Install plugin

Run Assessment

9 categories

Share Report

PDF or link

assessment completed 9 checks · <60s

Connect, assess, share — done

Install the BlockForge plugin on the target site, add it to your workspace as an assessment site, and run the analysis. Within 60 seconds, you have a complete report with scores, findings, and actionable recommendations. Share the report via a public UUID link or export it as a branded PDF. When you are ready, promote the site to fully managed with one click.

Key Capabilities

Everything you need for professional site audits

A–F Grading System

Each site receives a weighted overall grade from A to F based on all nine category scores. The grading is immediately understandable for non-technical stakeholders — no explanation needed.

Vulnerability Lookup

Every installed plugin is checked against the WPScan vulnerability database in real-time. Known CVEs, severity levels, and affected versions are included directly in the report findings.

Shareable Reports

Every assessment generates a unique UUID-based public URL. Share the link with clients, colleagues, or stakeholders — no BlockForge login required to view the report.

PDF Export

Export any assessment as a professionally formatted PDF with your workspace branding. Attach it to proposals, include it in client meetings, or archive it for compliance documentation.

One-Click Promote

Convert any assessment site to a fully managed site with one click. All management features activate immediately — backups, uptime monitoring, safe updates, and security checks.

Zero-Risk Analysis

Assessment sites run in read-only mode. No automated jobs, no scheduled backups, no plugin updates. BlockForge collects data and analyzes it — nothing on the site is changed or modified.

Use Cases

Built for real workflows

Agency Client Acquisition

Install the plugin on a prospect’s site during a pitch meeting, run the assessment live, and walk them through the findings. The professional report with clear grades turns a cold call into a data-backed conversation about their site’s health.

“We ran a quick health check on your site — here’s what we found.”

Client Onboarding

When taking over a new client site, run an assessment first to document the starting state. The report serves as a baseline — you know exactly what needs fixing, and the client sees measurable improvement over time.

“Here’s where your site stands today. Here’s our plan.”

Periodic Health Checks

Schedule quarterly assessments across your entire portfolio. Track grades over time, identify sites that are degrading, and catch issues before they become emergencies. Include reports in client review meetings.

“Your site improved from C to A since our last review.”

Compliance Documentation

Use PDF exports as evidence for compliance audits and security reviews. The structured, timestamped reports provide a verifiable record of your sites’ security posture at any point in time.

“Attached: Site assessment reports for Q1 2026.”

Related Features

Verified Backups

Every backup restored in Docker to confirm it actually works.

Safe Updates

Backup, update, verify, auto-rollback. Fully automated.

Built for Agencies

Multi-site management, client portal, white-label reports.

Start assessing WordPress sites today.

Run your first site assessment in under 60 seconds. Free plan available.

Start free