Start working on absolute foundation topics. Learn Wireshark and tcpdump inside-and-out.
Go through the assembly and exploitation tutorials on Corelan, SecurityTube, Open Security Training, The Gray Corner, etc.
There are a ton of free resources available, and if you're just starting out, you could easily spend 6-12 months on those resources. Don't just learn how to run Metasploit (but if you want to ignore my advice and skip ahead, OffSec even has a free and comprehensive Metasploit course).
Mastering this topics at the start will make everything else easier later, and that'll allow you to keep moving forward while you save for later courses.
The day you stop learning is the day you start becoming obsolete.