danmack/gist:a7570a3822525d70d83f4aa07bb4dbd7

## gistfile1.txt
root@171137a2-b0ef-e9ff-8b63-cb31c060a4fa:~# uname -a ; /native/usr/sbin/dtrace -n lx-syscall:::entry'/progenyof($target)/{@[probefunc] = count()}' -c "powershell Get-Process > /dev/null"
Linux 171137a2-b0ef-e9ff-8b63-cb31c060a4fa 4.3.0 BrandZ virtual linux x86_64 x86_64 x86_64 GNU/Linux
dtrace: description 'lx-syscall:::entry' matched 676 probes
dtrace: pid 26066 has exited

  arch_prctl                                                        1
  exit_group                                                        1
  mincore                                                           1
  mlock                                                             1
  set_tid_address                                                   1
  exit                                                              2
  getrusage                                                         2
  getsid                                                            2
  mknod                                                             2
  setrlimit                                                         2
  uname                                                             2
  unlink                                                            2
  madvise                                                           3
  poll                                                              3
  sched_get_priority_max                                            3
  sched_get_priority_min                                            3
  sched_getparam                                                    3
  sched_getscheduler                                                3
  sched_setscheduler                                                3
  getcwd                                                            4
  getrlimit                                                         5
  connect                                                           6
  socket                                                            6
  sysinfo                                                           7
  readlink                                                          8
  ioctl                                                            11
  brk                                                              18
  pipe                                                             19
  clone                                                            21
  set_robust_list                                                  22
  geteuid                                                          23
  rt_sigaction                                                     25
  write                                                            31
  access                                                           32
  statfs                                                           36
  msync                                                            67
  dup                                                              76
  sched_getaffinity                                               102
  getdents                                                        114
  sched_yield                                                     122
  flock                                                           284
  getppid                                                         292
  getuid                                                          292
  lseek                                                           303
  fstat                                                           372
  gettid                                                          479
  close                                                           631
  fcntl                                                           669
  open                                                            748
  read                                                            820
  rt_sigprocmask                                                 1227
  lstat                                                          1336
  stat                                                           3672
  munmap                                                         4149
  mmap                                                           4343
  futex                                                          5041
  mprotect                                                       7000
root@171137a2-b0ef-e9ff-8b63-cb31c060a4fa:~# dpkg -l | grep powershell
ii  powershell                  6.0.0-alpha.9-1                 amd64        PowerShell is an automation and configuration management platform.
	root@171137a2-b0ef-e9ff-8b63-cb31c060a4fa:~# uname -a ; /native/usr/sbin/dtrace -n lx-syscall:::entry'/progenyof($target)/{@[probefunc] = count()}' -c "powershell Get-Process > /dev/null"
	Linux 171137a2-b0ef-e9ff-8b63-cb31c060a4fa 4.3.0 BrandZ virtual linux x86_64 x86_64 x86_64 GNU/Linux
	dtrace: description 'lx-syscall:::entry' matched 676 probes
	dtrace: pid 26066 has exited

	arch_prctl 1
	exit_group 1
	mincore 1
	mlock 1
	set_tid_address 1
	exit 2
	getrusage 2
	getsid 2
	mknod 2
	setrlimit 2
	uname 2
	unlink 2
	madvise 3
	poll 3
	sched_get_priority_max 3
	sched_get_priority_min 3
	sched_getparam 3
	sched_getscheduler 3
	sched_setscheduler 3
	getcwd 4
	getrlimit 5
	connect 6
	socket 6
	sysinfo 7
	readlink 8
	ioctl 11
	brk 18
	pipe 19
	clone 21
	set_robust_list 22
	geteuid 23
	rt_sigaction 25
	write 31
	access 32
	statfs 36
	msync 67
	dup 76
	sched_getaffinity 102
	getdents 114
	sched_yield 122
	flock 284
	getppid 292
	getuid 292
	lseek 303
	fstat 372
	gettid 479
	close 631
	fcntl 669
	open 748
	read 820
	rt_sigprocmask 1227
	lstat 1336
	stat 3672
	munmap 4149
	mmap 4343
	futex 5041
	mprotect 7000
	root@171137a2-b0ef-e9ff-8b63-cb31c060a4fa:~# dpkg -l \| grep powershell
	ii powershell 6.0.0-alpha.9-1 amd64 PowerShell is an automation and configuration management platform.