The question is quite general. To get started, you can start with this:
1. Tools.
It is believed that a specialist in the field of information security should know the following languages:
> python
> php
> perl
> bash basics bash
is the OS *nix system language, so we recommend using *nix-like systems.
From the general development - English and the ability to use a search engine. Almost all literature and documentation is not translated into Russian, so do not be afraid to absorb knowledge through the prism of a dictionary.
2. Standard tasks.
www.hacker.org/challenge
overthewire.org/wargames/natas
https://pentesterlab.com/
3. Books (in English) that can help:
> The Tangled Web
> The Web Application Hackers' Handbook, 2nd Edition
4. Toolkit
> Burp Suite
> SqlMap
> Nmap
> IP Tools
> Acunetix
> Nikto
> w3af
> Nessus
> Actually listed from different categories, but be able to work with the above - useful skill.
5. View
> bit.ly/1Pdp1Tu
> nnm-club.me/forum/viewtopic.php?t=578252
> nnm-club.me/forum/viewtopic.php?t=582931
> rutracker.org/forum/viewtopic. php?t=3720946 It's
just not entirely clear what direction you are interested in, what kind of background you already have, etc.
ps You can write to me on Skype - I can throw materials for training.

sqlmap help - great read on the topic!

In my humble opinion, a Kali user is not a pentester. So... Advanced user.
So it will be necessary to pump self-presentation

you can start studying in the PENTESTIT laboratory on Habré, you can read their corporate blog and choose a course for yourself habrahabr.ru/company/pentestit