It's a good thing that you are trying to learn how to hack, but my advice is to do this in a test/virtual environment or in a LAN that is just for testing purposes (of course, that LAN has to be yours or you should have the written approval of the owner).
Messing up with production servers is a dangerous thing, as you said, you are still learning, you don't know what's the impact of your scans to the server.
On the other hand, even if your mother is the CEO of the company, you still shouldn't make a security assessment without having a signed agreement between you and the company - so called Get out of jail card.
Is the Security Officer / IT Manager informed about this? If your mother is the only person that knows about this ... it's just not right, you know?
Do you think that in case that server is compromised while you are doing your assessment, and a forensic analysis is performed, it will be easy for her/you to explain your actions?
Try to keep the learning process in a controlled environment and you will be just fine.
And now to answer your question: try searching this forum, I'm sure that you would find some great books that describe the process of ethical hacking step by step.
Security+, OSCP, CISM, CISSP