Posts of last 24 hours
A vulnerability described as critical has been identified in Nsasoft Nsauditor RemShutdown 2.9.0.0. Affected is an unknown function of the component Registration Key Handler. The manipulation results in buffer overflow.
This vulnerability is known as CVE-2020-37204. Attacking locally is a requirement. Furthermore, an exploit is available.
https://vuldb.com/vuln/345631
A vulnerability classified as critical has been found in Nsasoft Nsauditor ShareAlarmPro Advanced Network Access Control. Affected by this vulnerability is an unknown functionality of the component Registration Key Handler. This manipulation causes buffer overflow.
This vulnerability is handled as CVE-2020-37206. It is possible to launch the attack on the local host. Additionally, an exploit exists.
https://vuldb.com/vuln/345632
A vulnerability classified as critical was found in Nsasoft Nsauditor NetShareWatcher 1.5.8.0. Affected by this issue is some unknown functionality of the component Registration Key Handler. Such manipulation leads to stack-based buffer overflow.
This vulnerability is uniquely identified as CVE-2020-37200. Local access is required to approach this attack. Moreover, an exploit is present.
https://vuldb.com/vuln/345633
A vulnerability, which was classified as critical, was found in Nsasoft Nsauditor SpotDialup 1.6.7. This vulnerability affects unknown code of the component Registration Handler. Executing a manipulation of the argument Key can lead to buffer overflow.
The identification of this vulnerability is CVE-2020-37207. The attack can only be executed locally. Furthermore, there is an exploit available.
https://vuldb.com/vuln/345635
Police must get a warrant to request geofence data involving individual cellphones, the U.S. Supreme Court ruled in what represents a victory for privacy advocates.
https://therecord.media/supreme-court-geofencing-ruling-fourth-amendment
Китайский многоразовый космоплан уже выпустил не меньше девяти объектов, и ни один из них не получил публичного объяснения.
https://www.securitylab.ru/news/574241.php
时间范围:2026-05-12 至 2026-06-30
写作定位:这不是开发日志,也不是提交记录。它是一份面向分享的回忆录:记录一个交易想法如何从两篇 X 文章,变成一套越来越严肃、越来越不敢轻易相信自己的量化系统。
AI 协作说明:这份回忆录由 AI 协助我整理、追问和写作,用来记录我从交易想法出发,逐步构建、怀疑、修正一套量化系统的过程。里面的判断、取舍和反思来自项目推进中的真实证据与对话复盘,AI 主要承担梳理脉络、改写表达和补齐遗漏的工作。
更新原则:这份文档以后会不定期更新,但不会按“今天改了哪个文件”继续堆流水账。
每次更新优先记录四件事:
- 当时我以为什么是对的。
- 后来系统或数据如何证明我想简单了。
- 我做了什么决定,为什么没有选另一条路。
- 这个决定留下了什么结果、教训或新的风险。
具体代码、命令、回测数字仍会保留,但放在章节中的证据段或附录里。正文要尽量像一篇可以给别人看的长文,而不是一份工作汇报。
第一幕:第一条权益曲线太好看了这一幕写的是最早那种危险的兴奋感:两篇 X 文章、一套看起来很合理的交易框架、几条很快能跑起来的命令,以及第一条漂亮到让人愿意相信它的权益曲线。
那时我还没有真正理解,交易系统最会骗人的地方不是它跑不起来,而是它太快给你一个像答案的东西。第一幕的主线,就是从“策略好像有了”走到“数字开始互相打架”。
序章:最开始只是两篇文章这个项目真正的开始,不是一个仓库,也不是一个数据库——而是我一次过于自信的“来都来了”。
https://ares-x.com/2026/06/21/%E4%BB%8E%E4%B8%A4%E7%AF%87-X-%E6%96%87%E7%AB%A0%E5%BC%80%E5%A7%8B-%E6%88%91%E7%AC%AC%E4%B8%80%E6%AC%A1%E6%9E%84%E5%BB%BA%E9%87%8F%E5%8C%96%E7%B3%BB%E7%BB%9F%E7%9A%84%E5%9B%9E%E5%BF%86%E5%BD%95/
NASA учит ИИ ставить диагнозы без связи с Землёй.
https://www.securitylab.ru/news/574267.php