Tools like PRTG and Cacti that monitor SNMP information are used to provide what type of information for an incident investigation?

PRTG and Cacti are both network monitoring tools that can provide bandwidth moni- toring information. Bandwidth monitors can help identify exfiltration, heavy and abnormal bandwidth usage, and other information that can be helpful for both incident identification and incident investigations. If you encounter a question like this on the exam, even if you’re not familiar with either tool, you can use your knowledge of what Simple Network Management Protocol (SNMP) is used for to identify which of the categories is most likely correct.