What are some good sources on learning armitage, metasploit,

>>56030234

To be truly good, you're going to need general comp sci knowledge. You need to know C to be able to spot bugs that can be exploited. You may need assembly to deliver as an exploit payload. Stick to reading the forums, but start down the path of really understanding issues. You want to be the one who finds and creates exploits that may eventually end up in metasploit or whatever.

>>56031005
Gotcha, as far as books go any good ones for c or asembly? I know the c book is posted here a lot

>>56031175

The original C Programming Language book is so well written. Its a relatively small book, but the presentation of concepts and the language is superb. It'll give you the core language. You'll need to add in external libraries to really interact with the system. For Unix, you want Advanced Programming in the Unix Environment. I don't really know the Windows equivalent. Maybe also useful to check out Unix Network Programming to understand what's going on with clients and servers.

I don't entirely remember what I used to learn assembly. Intel publishes books on their processors in PDF format--just go to their website, look up a modern chip and they should be easy to find. They're full of good information.

You can learn a lot from new exploits as they come out--go and look at what was done incorrectly. This could be useful for learning HTML/JS issues like CSRF. There's an old Phrack issue that talks about how buffer overflows work which is pretty good for that.

There are also plenty of security certifications you can achieve. The benefit there is that they can also guide you through the important bits. They won't be free, but if you get certified it beefs up your resume.