A standard SEO audit evaluates a site against a fixed set of best practices regardless of whether anything specific has happened; forensic SEO starts from a symptom — a traffic drop, a stalled site, a suspected penalty — and investigates backward through evidence to establish a specific, provable cause. You need a standard audit when you want to know how healthy your site is. You need forensic SEO when you need to know why something changed.
A standard audit is prescriptive and comprehensive by design. It runs through a fixed checklist regardless of the site’s current performance: title tag and meta description quality, header structure, internal linking, page speed and Core Web Vitals, mobile usability, XML sitemap and robots.txt configuration, schema markup presence, content quality and keyword coverage, and backlink profile health. The output is typically a prioritized list of improvements — what to fix, in what order, to bring the site closer to best-practice standard.
This is genuinely useful work, and most sites benefit from it regardless of whether they’re currently struggling. A new site, a site that’s never been formally audited, or a site that’s performing fine but wants to identify headroom for growth are all good candidates for a standard audit. The process doesn’t require a documented symptom or timeline — it’s evaluative, not investigative.
Forensic SEO adds an entire layer of work a standard audit isn’t built to do: constructing a historical timeline of site changes, algorithm updates, and external events; pulling and cross-referencing server log files to see exactly what search engine crawlers did over time; diffing historical crawls or Wayback Machine snapshots against current site state; and testing specific hypotheses about causation rather than just flagging deviations from best practice.
A standard audit might flag “your title tags could be more optimized” as a general improvement opportunity on every audit it runs, healthy site or not. A forensic investigation asks a much sharper question: “did a change to title tags on this specific date correlate with this specific ranking drop, and does the evidence actually support that being the cause, or is it a coincidence?” The difference is evaluative versus investigative — and it changes almost everything about how the work is scoped, timed, and reported.
The line isn’t always clean. Forensic SEO frequently uses the same underlying tools as a standard audit — a crawler, Search Console, a backlink tool — and a thorough standard audit will sometimes stumble onto something that looks like a forensic finding, particularly if it happens to reveal an obvious technical error introduced by a recent change. Similarly, a forensic investigation often concludes with recommendations that look like standard best-practice fixes, once the specific cause has been identified.
The meaningful difference isn’t the tools — it’s the starting question and the discipline applied to answering it. An audit asks “is this good?” against a fixed standard. Forensic SEO asks “why did this happen?” and refuses to conclude until the evidence supports a specific answer.
Choose a standard audit when:
Choose forensic SEO when:
Running a standard audit on a site with an active forensic problem often produces a list of generic improvements that don’t address the actual cause — the client implements them, sees no meaningful recovery, and loses confidence in SEO work generally, when the real issue is that the diagnostic approach didn’t match the problem. The reverse is also wasteful: running a full forensic investigation, with its heavier time and data requirements, on a site that just needs routine best-practice improvements adds cost and delay without a proportional benefit.
At Salterra, this is one of the first things we sort out in a discovery call: is this a “make it better” engagement or a “tell us what happened” engagement? The answer determines the entire scope, timeline, and pricing of the work, and getting it wrong at the start is a common reason SEO engagements underdeliver relative to client expectations.
Frequently, yes — and in a specific order. A forensic investigation identifies and fixes the cause of a specific problem; a standard audit, run afterward, ensures the rest of the site is in good health and identifies additional opportunities beyond just resolving the original symptom. Running them in the reverse order rarely works well, since a standard audit’s generic recommendations tend to get deprioritized or ignored by a client who’s still anxious about an unexplained drop that hasn’t been diagnosed yet.
Ask whether there's a specific symptom to explain. If you can point to a measurable change — a drop, a plateau after a migration, a manual action — and want to know why it happened, that's forensic SEO. If you just want a general health check with no specific incident driving the question, a standard audit is the right starting point.
Usually, yes, because it requires pulling and cross-referencing historical data across multiple sources rather than evaluating current site state against a fixed checklist. The time investment is genuinely higher. That said, a forensic investigation that correctly identifies a cause a standard audit would have missed entirely often saves far more money than it costs, by avoiding months of ineffective, unfocused fixes.
Yes, this happens fairly often. An auditor doing a routine review might notice something that looks like an obvious recent technical error — a broken canonical, a missing noindex removal, a sudden drop in indexed pages — that suggests a specific incident rather than a general improvement opportunity. When that happens, it's worth pausing the standard audit and scoping a proper forensic investigation around that specific finding rather than folding it into a generic recommendations list.
Practices vary, but treating them as genuinely separate services with separate scoping is the more honest approach, since they require different data access, different timelines, and different skill sets to do well. An agency that quotes forensic-level work at standard-audit pricing (or vice versa) is usually underdelivering on one side of that equation.
This does happen, particularly on sites with poor historical data retention (no old crawls, short log retention, incomplete Search Console history). In that case, the honest outcome is a report of the strongest supported hypotheses along with what evidence would have been needed to confirm or rule them out, plus recommendations for improving data retention going forward so a future investigation isn't similarly limited. It's a less satisfying outcome than a confirmed cause, but it's more useful than a confident guess presented as a finding.
Terry has 30+ years in software and SEO. He’s the founder of Salterra Digital Services and SEO Spring Training, host of the Roundtable SEO Mastermind, and lead instructor at SEO University — teaching the exact tactics his team uses on client work.
This guide is one lesson from the Forensic SEO course. Get every lesson, framework and checklist — plus the full 38-course catalog — inside SEO University.
Practitioner-focused training across the full digital marketing stack — from technical SEO to conversion optimization and the AI search era. By Salterra Digital Services, since 2011.