Infoboxes are being rewritten. You might see images or tabs broken or behaving weirdly during the move. Infoboxes use galleries instead of tabbers now. See the source of Broot for more info.
Captain Coal Attack
A Captain Coal Attack also known as a "CCA" in short, is a type of rare but gemmy raiding tactic used on altchans or imageboards where the attacker, or person will first verify if it's a imageboard that can be attacked by the Captain Coal method. After verifying if the imageboard CAN be attacked, they go to the imageboard's server.vichan.org/mod.php, also known as Vichan/Tinyboard default login as an attempt to get admin powers on the said Altchan or Imageboard.
This rare type of method was popularized by Captain Coal himself, who got into an default admin account on the soyjak.party in 2021, after Soot forgot to disable the default login.
The Method[edit | edit source]
Step 1[edit | edit source]
Find the imageboard or Altchan of your choice, It is recommended you try find the said new or dead imageboard, as it's extremely rare that a popular imageboard will have the default logins in place[a]. You can also find said imageboard's by another method, Google dorking.
Step 2[edit | edit source]
Once you have found your imageboard, scroll down until you have reached the bottom of the page, If it says something along the lines of
Tinyboard Copyright © 2010-2014 Tinyboard Development Group
vichan Copyright © 2012-2025 vichan-devel
If those are there, Then congratulations! You have a compatible imageboard that can be CCAed.
Step 3[edit | edit source]
Find and navigate to the login page, which is almost always vichan.example.org/mod.php. for an example, However, the login page URL will not always be the same, and you will get a 404 page if you try to find one. The login page for jannies and mediators is also the same, Examples can be; https://soyjak.st/mod.php.
Step 4[edit | edit source]
| Username | |
| Password | |
|
Continue
| |
Above is a general representation of what an average Vichan login screen should look like. For the Username section, just enter in admin, And enter in password for the Password section.
Step 5[edit | edit source]
You're probably wondering why you haven't made it to Step 5 but, for those who have reached here, Congratulations! you should buy a lottery ticket! The chances of a working CCA is around 1-5% on average[it just is, ok?] ,so that chances you've made it this far is extremely slim. Now that you have reached here, you have full site access including the mod panel. You can add new boards, see user's IP addresses and even ban, autosage, mess with the imageboard a little bit and do pretty much anything an administrator can do.
Fun things to do after a successful CCA attack[edit | edit source]
- Delete all boards and add /markiplier/ or some other gemmy board like /soy/
- Delete troony threads
- Expose different troon's IP addresses publicly
- LARP as a different admin and say thing that would get them fired
- Give random people janny powers
- Ban random people for no reason to create seethe
- Do anything you want
Captain Coal attacks on and involving the Sharty[edit | edit source]
To be researched: What imageboard was CCAed a few months ago by a few 'teens? Can (You) help us?- Captain Coal - 2021
- Captain Cob - 2023
- Unknown - 2025 (Imageboard that was raided sometime in 2025, A 'teen tried a CCA and many users got in and 'aped the site to pieces causing the tranny owners of the site to rollback the site to an earlier version)
- S0I1337 - 2025 (Not really a CCA as it was an extremely different type of attack but still could be considered as such)
Notes
- ↑ The owners of said imageboard probably disabled the default login before sharing to the public.
