I feel like I'm missing something obvious and it's driving me nuts. I've done a full TCP port scan of Mirai and found 7 open TCP ports. Some of these, that commonly are logged into I have attempted to brute force their username / passwords per the way Mirai spreads using the lists Rapid7 includes with metasploit without any luck. I've researched various exploits, finding some which were for older versions of the services. The web pages I've found either are 401 Unauthorized or weren't brute forcible. I'm a bit lost and was wondering if anyone could point me in the right direction so that I can research and find the correct path forward.