Configure powershell with swiftonsecurity's sysmon config. Assumes that your install paths match. Modifiy as needed.

swiftonsecurity-sysmon-config.ps1

$source = 'https://raw.githubusercontent.com/Neo23x0/sysmon-config/master/sysmonconfig-export.xml'
$destination = 'C:\Program Files\Sysmon\Sysmon\sysmonconfig-export.xml' 
Invoke-WebRequest -Uri $source -OutFile $destination 
'C:\Program Files\Sysmon\Sysmon\Sysmon.exe -c .\sysmonconfig-export.xml'