Enthusiast to Smart contracts security(Auditing Smart Contract codes)

Hello guys glad to be in to this amazing community…i am looking some expert advices …i came from web security and mostly CTF background and now i am too passionate and eager to learn Smart contract auditing ,so currently learning to read and write smart contracts on ethereum solidity programming language.i do knows there is no particular way towards achieving a goal ,whereas i fear if i miss something crucial or spending a lot time on something not beneficiary.so i am grateful if any of you can give me insights.