From githacktools.blogspot.com
About BruteSpray: BruteSpray takes nmap GNMAP/XML output or newline seperated JSONS and automatically brute-forces services with default credentials using Medusa. BruteSpray can even find non-standard ports by using the -sV inside Nmap.
BruteSpay’s Installation With Debian users, the only thing you need to do is this command:sudo apt install brutespray