i was at same boat with you first i learned some sqli then webapp vuln (LFi , RFI ,CVEs) then the real ■■■■ begin once i created HTB accounts and i always keep asking for help and keeping notes till i built some knowledge, and IPPSEC was my sensei I learned so much from him