WPHammer
Powered by Laravel Forge™
Docs Steward Log in
WordPress care for teams running on Laravel Forge™

A calmer, more powerful way to manage WordPress sites.

WPHammer gives teams using Laravel Forge™ one clear place to stay ahead of updates, uptime, backups, security, routine maintenance, and site drift across their WordPress fleet without plugin sprawl, managed-hosting lock-in, or extra operational drag.

Updates
Core, plugins, themes
See what drifts first.
Monitoring
Uptime, visual, security
One operating surface.
Backups
DB Daily and Time Capsule
Know what is recoverable.
Operations overview
Your WordPress care at a glance
3 priorities
Updates pending
9
plugins and themes
Uptime coverage
31
sites monitored
Backup status
18
healthy schedules
Security findings
4
worth reviewing
Recent attention
What the team would act on next
northstar.on-forge.com
3 updates pending
acme.on-forge.com
99.99% uptime
atlas.on-forge.com
Security findings to review
Start in just a few minutes

See operational proof before WordPress maintenance turns into drift.

WPHammer is built for the work that follows infrastructure: inventorying sites, spotting updates, checking uptime, reviewing visual changes, and confirming backups are actually healthy.

Updates
14 sites need review

Core, plugin, and theme drift grouped together.

Monitoring
2 sites degraded

Uptime, visual checks, and findings in one place.

Recovery
1 storage setup missing

Spot backup risk before restore day.

WordPress upkeep

See updates, ownership, and maintenance status without jumping between tools.

Know which sites need plugin or theme attention, where the core version stands, and which maintenance actions are safe to take next.

Inventory across multiple WordPress installs.
Prioritize pending updates before they become incidents.
Keep operational actions close to the evidence that triggered them.
Updates queue
Needs review
Core 6.6.5
Current on 21 sites
Plugins
8 plugin families need updates
Themes
3 theme families need updates
Monitoring signals
Quietly in sync
Uptime
31 checks active, 2 degraded sites
Visual monitoring
6 changed baselines need review
Security
4 grouped findings worth triaging
Monitoring

Make uptime, visual changes, and security feel like one workflow.

Instead of spreading operational checks across separate tools and tabs, WPHammer keeps the signals close together so your team can scan fast and act with confidence.

Review changes by site, not by disconnected systems.
Bring backup status and risk into the same decision path.
Keep the next action obvious when something drifts.
Backups and recovery

Know whether a site is protected before you need to recover it.

WPHammer keeps DB Daily, Time Capsule, staging, and storage setup in the same operating language as the rest of your site care.

DB Daily
Scheduled
Time Capsule
Healthy
Storage
1 server missing setup
Security and abuse

Catch vulnerable code, bot abuse, and drift before they become client-facing problems.

Run security and abuse checks, flag what needs review, and remediate findings one site at a time or across the fleet without building a plugin stack just to stay informed.

Security scans
Core, files, crons
Abuse checks
Bots and suspicious traffic
Remediation
Single or bulk actions
One-click admin access

Open WordPress admin in one click without turning password handling into team overhead.

WPHammer can generate a one-time magic login link for a known WordPress user right from the site view, so your team can move into wp-admin without passing around passwords or storing risky credentials in another tool.

Generate the login link only when the team needs it.
Jump into the right WordPress user context from the same operational screen.
Keep password management out of routine maintenance, triage, and review work.
WP Login flow
Generated on demand
acme.com
Choose a WordPress user and open wp-admin directly.
WP WP Login
4 users
editor One-time link
wpadmin One-time link
Access path
Site view to wp-admin in one click
Authentication
One-time magic login URL per selected WP user
Credential risk
No password vaulting or copied admin credentials
Flexible actions
Where the work lives
Single site
Handle updates, scans, backups, and remediation without losing context.
Whole server
Review every WordPress install on a server and apply the next action in one place.
Selected fleet
Apply the same action across many sites or servers when the work repeats.
Operational reach

Apply actions at the site, server, or fleet level without changing tools.

WPHammer keeps evidence, scope, and actions together so agencies can move from review to execution without losing the thread across tabs, plugins, or dashboards.

Choose the smallest scope when the change is local.
Scale the same action across many sites when the work repeats.
Keep routine WordPress operations in one operating surface instead of a patchwork of admin plugins.
Commands and control

Run Bash and WP-CLI where the work is, from one site to many.

Execute direct commands against a site, a server, or a selected group when the fastest path is the command line, not another plugin screen or hosting panel.

Bash
Server and site tasks
WP-CLI
WordPress-native operations
Command history
Review what ran and where
Steward
New

A supervised operator that investigates, plans, and asks before it acts.

Steward is not unrestricted automation. It is a governed agent layer that reads your fleet, explains what it sees, proposes the safest next action, and waits for your approval before touching anything important.

Investigates server health, WordPress drift, and security findings without risk.
Plans patch, clone, backup, and remediation operations with full context.
Asks for approval on anything that writes, with typed confirmation for destructive actions.
Reports outcomes back to the channel you approved from.
Specialized agents
Four operators, each scoped to what they know
WordPress Caretaker
Updates, patches, auto-update policies
Server Diagnostician
Health metrics, load, incident correlation
Site Operations
Clone, backup, restore, staging plans
Security Triage
Findings, severity, remediation priority
Human in the loop
Approve from wherever you are
In-app console
Full context, threaded timeline
Telegram
Inline keyboard approvals
Slack
Block Kit with thread replies
Governed autonomy

Routine WordPress work, handled calmly at scale.

Every Steward action is scoped by a runtime policy with explicit server and site allowlists, action budgets, and dry-run mode. Agencies keep full control while the operational surface expands.

Scope locks
Per-server, per-site allowlists
Action budgets
Daily and weekly limits
Dry-run mode
Full plans, zero execution
Open by design

Do not replace plugin lock-in with platform lock-in.

WordPress is valuable because it stays open. Forge keeps your infrastructure portable. WPHammer keeps your operations portable too. Your sites stay yours, and you can leave with them as they are.

Use fewer WordPress management plugins just to monitor, review, and operate your fleet.
Stay on Forge instead of being pushed onto a proprietary managed-hosting stack.
Walk away anytime with your sites, servers, and workflows intact.
Why teams switch
Stay unblocked
Less plugin drag
Move monitoring, backup review, and operational checks out of wp-admin.
Less hosting pressure
Keep the flexibility of Forge instead of buying into a closed managed platform.
More operational clarity
Give lean agency teams one place to review what matters and act with confidence.
See whether it fits your team

If Forge is your infrastructure layer, WPHammer is the missing care layer.

Log in if you already have access, or drop into the login page to ask for closed-beta updates.

Log in